![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 30%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDB%3C/text%3E%3C/svg%3E)
Azure App Configuration
An Azure service that provides hosted, universal storage for Azure app configurations.
237 questions
Hello @DANILO BATISTA DE QUEIROZ , the main reasons of why Certificates are more secure than Secrets would be:
- Certificate assertions are usually short-lived (Eg. 5 to 10 minutes) so if even if intercepted they will provide only limited use. Secrets on the other hand tend to be long-lived.
- Secrets are symmetric keys so both client and server need to know about it. With certificates only the client needs to be able to use the private key w/o reading it (which is usually handled by the OS cryptographic system) while the server only needs to know the public key for validation thus you won't need to transmit/share the private key/secret. With a secret you will have to both share and transmit it.
Access tokens are usually short-lived (max 1 hour by default). Secrets, again, are usually long lived. Also, access tokens are issued to only 1 client while a secret can be used to issue several access tokens for several clients.
Let us know if this answer was helpful to you or if you need additional assistance. If it was helpful, please remember to accept it so that others in the community with similar questions can more easily find a solution.