Upgrade to Pro — share decks privately, control downloads, hide ads and more …

State of OpenStack Security

Avatar for Bryan Payne Bryan Payne
May 01, 2014
Technology
0
76

State of OpenStack Security

Avatar for Bryan Payne

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
How To Have Impact In Security: Stories About Risk Reduction At Scale
Avatar for Bryan Payne bdpayne
0
11
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
Avatar for Bryan Payne bdpayne
0
270
BLESS: Better Security and Ops for SSH Access
Avatar for Bryan Payne bdpayne
3
760
Securing Containers the Netflix Way
Avatar for Bryan Payne bdpayne
1
2.4k
PKI at Scale Using Short-Lived Certificates
Avatar for Bryan Payne bdpayne
0
890
Platform Security Jobs at Netflix
Avatar for Bryan Payne bdpayne
0
880
Improving Cloud Security with Attacker Profiling
Avatar for Bryan Payne bdpayne
2
830
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
Avatar for Bryan Payne bdpayne
4
2k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
Avatar for Bryan Payne bdpayne
0
220

Other Decks in Technology

See All in Technology
How Community Opened Global Doors
Avatar for hiroramos hiroramos4
PRO
1
120
生成AIでwebアプリケーションを作ってみた
Avatar for tajimon tajimon
2
150
セキュリティの民主化は何故必要なのか_AWS WAF 運用の 10 の苦悩から学ぶ
Avatar for Yoichi Satake (Yoh) yoh
1
140
Oracle Audit Vault and Database Firewall 20 概要
Avatar for oracle4engineer oracle4engineer
PRO
3
1.7k
Claude Code Actionを使ったコード品質改善の取り組み
Avatar for Katsunori Kanda potix2
PRO
6
2.2k
Node-REDのFunctionノードでMCPサーバーの実装を試してみた / Node-RED × MCP 勉強会 vol.1
Avatar for you(@youtoy) you
PRO
0
110
Model Mondays S2E02: Model Context Protocol
Avatar for Nitya Narasimhan, PhD nitya
0
220
急成長を支える基盤作り〜地道な改善からコツコツと〜 #cre_meetup
Avatar for すてにゃん stefafafan
0
120
なぜ私はいま、ここにいるのか? #もがく中堅デザイナー #プロダクトデザイナー
Avatar for 弁護士ドットコム bengo4com
0
410
【TiDB GAME DAY 2025】Shadowverse: Worlds Beyond にみる TiDB 活用術
Avatar for Cygames cygames
0
1.1k
生成AI時代の開発組織・技術・プロセス 〜 ログラスの挑戦と考察 〜
Avatar for Hiroshi Ito itohiro73
0
140
Wasm元年
Avatar for asuka askua
0
140

Featured

See All Featured
Designing for humans not robots
Avatar for Tammie Lister tammielis
253
25k
Practical Tips for Bootstrapping Information Extraction Pipelines
Avatar for Matthew Honnibal honnibal
PRO
20
1.3k
Performance Is Good for Brains [We Love Speed 2024]
Avatar for Tammy Everts tammyeverts
10
930
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
512
110k
Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]
Avatar for Tammy Everts tammyeverts
5
210
10 Git Anti Patterns You Should be Aware of
Avatar for Lemi Orhan Ergin lemiorhan
PRO
657
60k
Statistics for Hackers
Avatar for Jake VanderPlas jakevdp
799
220k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
233
17k
Bootstrapping a Software Product
Avatar for Garrett Dimon garrettdimon
PRO
307
110k
Learning to Love Humans: Emotional Interface Design
Avatar for Aarron Walter aarron
273
40k
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
42
7.3k
KATA
Avatar for Megan Lloyd mclloyd
29
14k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved. State of OpenStack Security

    Bryan D. Payne Director of Security Research May 1, 2014

  2. ©2014 Nebula, Inc. All rights reserved. My Background • Focused

    on security my entire career • Spent a few years in school

  3. ©2014 Nebula, Inc. All rights reserved. Nebula One DevOPs/Test Apps

    & Workloads Media Apps & Workloads Other … Apps & Workloads Social Collaboration Apps & Workloads Big Data + Analytics Apps & Workloads Mobile Apps & Workloads Compute Storage Network Identity/Security Management/Orchestration/API Interface Turnkey Infrastructure as a Service (IaaS) Block Object 1000+  companies  contributing  to  OpenStack Industry Standard Servers

  4. ©2014 Nebula, Inc. All rights reserved. OSSG HISTORY

  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ©2014 Nebula, Inc. All rights reserved. LOOKING FORWARD

  38. ©2014 Nebula, Inc. All rights reserved. Key OSSG Projects •

    OpenStack Security Guide (aka “the book”) • OpenStack Security Notes (OSSN) • Threat Modeling & Analysis

  39. ©2014 Nebula, Inc. All rights reserved. Mid-Term Goals • Quality

    work in three key projects • More formal acceptance in community • Increase collaboration with core devs

  40. ©2014 Nebula, Inc. All rights reserved. OpenStack Projects “The Glue”

    Improve available security Document best practices Simplify security compliance Work with builders, ops, users

  41. ©2014 Nebula, Inc. All rights reserved. QUESTIONS Email: [email protected] Twitter:

    @bdpsecurity