$30 off During Our Annual Pro Sale. View details »

State of OpenStack Security

Bryan Payne
May 01, 2014
Technology
0
54

State of OpenStack Security

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
bdpayne
0
210
BLESS: Better Security and Ops for SSH Access
bdpayne
3
670
Securing Containers the Netflix Way
bdpayne
1
2.1k
PKI at Scale Using Short-Lived Certificates
bdpayne
0
800
Platform Security Jobs at Netflix
bdpayne
0
830
Improving Cloud Security with Attacker Profiling
bdpayne
2
800
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
bdpayne
4
1.6k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
bdpayne
0
180
Platform Security at Netflix: Securing Microservices from the Ground Up
bdpayne
0
5.5k

Other Decks in Technology

See All in Technology
AWS Fault Injection Simulator (FIS) のネットワーク接続中断アクションで リージョン間フェイルオーバーを試してみた
yama1998
0
200
DevelopersIOのアウトプット文化を ハックして人材育成に繋げる話 /deviosapporo2022fall_takipone
takipone
0
340
Web Runtime
dynamis
2
160
祝 🎉 両方とも正式リリース! GitHub Codespaces と Nuxt3 で次世代開発体験 / codespaces-nuxt3
miyake
0
670
Svelte Runtime 101 (JSConf JP 2022)
baseballyama
2
280
Aurora MySQL 一段飛ばしのバージョンアップとその他もろもろの話
hmatsu47
PRO
1
760
Figma → Vue コード自動生成サービスを技術検証してみた
takumakurosawa
0
500
Dynamic Link: Smart Contract Interaction Method Developed by LINE
techverse_2022
PRO
0
120
2022技育祭_映写資料①
techtekt
0
180
Cloud Native NFV がチームにもたらしたもの / Cloud Native NFV Changed Our Team
line_developers
PRO
0
280
Hyperscale Projects, Why and How to Build on Ceph’s Limitations
techverse_2022
PRO
0
110
スタートアップ企業で始めるAWSセキュリティ対策 ~内部統制の観点から~ / aws-security-and-internal-audit-at-a-startup
yuj1osm
2
900

Featured

See All Featured
Designing Experiences People Love
moore
130
22k
4 Signs Your Business is Dying
shpigford
170
20k
How to name files
jennybc
45
69k
How To Stay Up To Date on Web Technology
chriscoyier
779
250k
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
196
9.7k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
120
29k
Bootstrapping a Software Product
garrettdimon
299
110k
BBQ
matthewcrist
75
8.1k
Why Our Code Smells
bkeepers
PRO
326
55k
A better future with KSS
kneath
227
16k
Infographics Made Easy
chrislema
234
17k
StorybookのUI Testing Handbookを読んだ
zakiyama
7
3k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved. State of OpenStack Security

    Bryan D. Payne Director of Security Research May 1, 2014

  2. ©2014 Nebula, Inc. All rights reserved. My Background • Focused

    on security my entire career • Spent a few years in school

  3. ©2014 Nebula, Inc. All rights reserved. Nebula One DevOPs/Test Apps

    & Workloads Media Apps & Workloads Other … Apps & Workloads Social Collaboration Apps & Workloads Big Data + Analytics Apps & Workloads Mobile Apps & Workloads Compute Storage Network Identity/Security Management/Orchestration/API Interface Turnkey Infrastructure as a Service (IaaS) Block Object 1000+  companies  contributing  to  OpenStack Industry Standard Servers

  4. ©2014 Nebula, Inc. All rights reserved. OSSG HISTORY

  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ©2014 Nebula, Inc. All rights reserved. LOOKING FORWARD

  38. ©2014 Nebula, Inc. All rights reserved. Key OSSG Projects •

    OpenStack Security Guide (aka “the book”) • OpenStack Security Notes (OSSN) • Threat Modeling & Analysis

  39. ©2014 Nebula, Inc. All rights reserved. Mid-Term Goals • Quality

    work in three key projects • More formal acceptance in community • Increase collaboration with core devs

  40. ©2014 Nebula, Inc. All rights reserved. OpenStack Projects “The Glue”

    Improve available security Document best practices Simplify security compliance Work with builders, ops, users

  41. ©2014 Nebula, Inc. All rights reserved. QUESTIONS Email: bryan.payne@nebula.com Twitter:

    @bdpsecurity