IBM Secure Gateway Service Key
Service Name: IBM Secure Gateway
Service Description: IBM Secure Gateway provides secure connectivity and establishes a tunnel between your on-premise or cloud environments and the IBM Cloud. It enables you to securely connect applications and data sources across environments.
Service Address: https://cloud.ibm.com/catalog/services/secure-gateway
Validation Type: API Auth
IP Allow list: IP restrictions can be configured at the gateway level to control which IP addresses can access the gateway.
Secret Access Scope: Grants access to manage and configure secure gateway instances, establish connections between environments, and control data flow through the gateway.
Secret Revokement URL: https://cloud.ibm.com/docs/services/SecureGateway?topic=securegateway-resource-key
Secret Example: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZXJ2aWNlX2lkIjoiYWJjZDEyMzQtNTY3O C05MGFiLWNkZWYtMTIzNDU2Nzg5MGFiIn0.MD_revSmKSevYxs- xqcrb8Sd_T4fXEa_SNR9_DGdJrc
Suspicious Activity Investigation Instructions:
- Review IBM Cloud Activity Tracker logs for unusual gateway access or configuration changes
- Check for unexpected connections or data transfers through the gateway
- Monitor for unauthorized IP addresses attempting to access the gateway
-
Verify gateway client connection logs for unusual patterns or unauthorized access attempts
-
Review resource utilization metrics for abnormal traffic patterns
Mitigation Instructions:
- Immediately revoke the compromised service key through the IBM Cloud console
- Generate a new service key for legitimate applications that require access
- Update IP allowlists to restrict access to only necessary IP addresses
- Review and update destination access control lists to limit accessible endpoints
- Enable additional security features like mutual authentication if not already in use
- Update any applications or services using the old key with the new credentials
- Consider implementing token expiration policies for service keys
- Review and update security group configurations if applicable