Upgrade to Pro — share decks privately, control downloads, hide ads and more …

State of OpenStack Security

Avatar for Bryan Payne Bryan Payne
May 01, 2014
Technology
0
77

State of OpenStack Security

Avatar for Bryan Payne

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
How To Have Impact In Security: Stories About Risk Reduction At Scale
Avatar for Bryan Payne bdpayne
0
11
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
Avatar for Bryan Payne bdpayne
0
270
BLESS: Better Security and Ops for SSH Access
Avatar for Bryan Payne bdpayne
3
760
Securing Containers the Netflix Way
Avatar for Bryan Payne bdpayne
1
2.4k
PKI at Scale Using Short-Lived Certificates
Avatar for Bryan Payne bdpayne
0
890
Platform Security Jobs at Netflix
Avatar for Bryan Payne bdpayne
0
880
Improving Cloud Security with Attacker Profiling
Avatar for Bryan Payne bdpayne
2
830
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
Avatar for Bryan Payne bdpayne
4
2k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
Avatar for Bryan Payne bdpayne
0
220

Other Decks in Technology

See All in Technology
生まれ変わった AWS Security Hub (Preview) を紹介 #reInforce_osaka / reInforce New Security Hub
Avatar for MasahiroKawahara masahirokawahara
0
420
MobileActOsaka_250704.pdf
Avatar for AKAI Tadaaki akaitadaaki
0
110
作曲家がボカロを使うようにPdMはAIを使え
Avatar for Takuya Ito itotaxi
0
430
第4回Snowflake 金融ユーザー会 Snowflake summit recap
Avatar for Makoto tamaoki
0
210
OPENLOGI Company Profile for engineer
Avatar for OPENLOGI hr01
1
33k
開発生産性を組織全体の「生産性」へ! 部門間連携の壁を越える実践的ステップ
Avatar for ussy / @sudo5in5k sudo5in5k
1
5.8k
Tech-Verse 2025 Keynote
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
1.7k
Understanding_Thread_Tuning_for_Inference_Servers_of_Deep_Models.pdf
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
160
What’s new in Android development tools
Avatar for Yuki Anzai yanzm
0
110
Delegating the chores of authenticating users to Keycloak
Avatar for Alexander Schwartz ahus1
0
130
LangChain Interrupt & LangChain Ambassadors meetingレポート
Avatar for os1ma os1ma
2
280
B2C&B2B&社内向けサービスを抱える開発組織におけるサービス価値を最大化するイニシアチブ管理
Avatar for Belong inc. belongadmin
1
5.7k

Featured

See All Featured
GitHub's CSS Performance
Avatar for Jon Rohan jonrohan
1031
460k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
28
5.4k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
Avatar for Eileen M. Uchitelle eileencodes
138
34k
jQuery: Nuts, Bolts and Bling
Avatar for Doug Neiner dougneiner
63
7.8k
Helping Users Find Their Own Way: Creating Modern Search Experiences
Avatar for Dan Newman danielanewman
29
2.7k
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
367
19k
Building an army of robots
Avatar for Kyle Neath kneath
306
45k
Save Time (by Creating Custom Rails Generators)
Avatar for Garrett Dimon garrettdimon
PRO
31
1.3k
Fashionably flexible responsive web design (full day workshop)
Avatar for Andy Clarke malarkey
407
66k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
82
9.1k
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
694
190k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
Avatar for soudai sone soudai
PRO
181
53k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved. State of OpenStack Security

    Bryan D. Payne Director of Security Research May 1, 2014

  2. ©2014 Nebula, Inc. All rights reserved. My Background • Focused

    on security my entire career • Spent a few years in school

  3. ©2014 Nebula, Inc. All rights reserved. Nebula One DevOPs/Test Apps

    & Workloads Media Apps & Workloads Other … Apps & Workloads Social Collaboration Apps & Workloads Big Data + Analytics Apps & Workloads Mobile Apps & Workloads Compute Storage Network Identity/Security Management/Orchestration/API Interface Turnkey Infrastructure as a Service (IaaS) Block Object 1000+  companies  contributing  to  OpenStack Industry Standard Servers

  4. ©2014 Nebula, Inc. All rights reserved. OSSG HISTORY

  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ©2014 Nebula, Inc. All rights reserved. LOOKING FORWARD

  38. ©2014 Nebula, Inc. All rights reserved. Key OSSG Projects •

    OpenStack Security Guide (aka “the book”) • OpenStack Security Notes (OSSN) • Threat Modeling & Analysis

  39. ©2014 Nebula, Inc. All rights reserved. Mid-Term Goals • Quality

    work in three key projects • More formal acceptance in community • Increase collaboration with core devs

  40. ©2014 Nebula, Inc. All rights reserved. OpenStack Projects “The Glue”

    Improve available security Document best practices Simplify security compliance Work with builders, ops, users

  41. ©2014 Nebula, Inc. All rights reserved. QUESTIONS Email: [email protected] Twitter:

    @bdpsecurity