Upgrade to Pro — share decks privately, control downloads, hide ads and more …

State of OpenStack Security

938bca9547ba1cac3e69d80efd67fe6b?s=47 Bryan Payne
May 01, 2014
Technology
0
41

State of OpenStack Security

938bca9547ba1cac3e69d80efd67fe6b?s=128

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
0
170
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
3
610
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
0
2k
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
0
760
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
0
790
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
2
770
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
4
1.4k
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
0
150
938bca9547ba1cac3e69d80efd67fe6b?s=48 bdpayne
0
5.1k

Other Decks in Technology

See All in Technology
23f4d5d797a91b6d17d627b90b5a42d9?s=48 kentaro
2
510
53850955f15249a1a9dc49df6113e400?s=48 line_developers
PRO
2
450
53850955f15249a1a9dc49df6113e400?s=48 line_developers
PRO
2
180
7e6a435700dda6cdb22105d601f20892?s=48 picardparis
4
2.4k
Db56c5975c67fcabeb1a395b835fa250?s=48 brtriver
1
500
40301c0affdf359eaca771713e22b71a?s=48 harshbothra
0
230
525442fc70ca92f82ae503f826956137?s=48 finengine
0
340
Fb025419ed38f98df595eb2eafc859f4?s=48 ihcomega56
2
870
14d83dc17e2c893d7564b609ff8da4ca?s=48 techharmony
0
160
Fe475df4e28cef1175a787fb032e0489?s=48 bolonio
4
570
842515eaf8fbb2dfcc75197e7797dc15?s=48 sat
1
270
Ad2155c75c67c0100dd008ad10858de5?s=48 legalforce
PRO
0
170

Featured

See All Featured
651dcfe41723207fbb0aa044a4f7c07f?s=48 dotmariusz
94
5.5k
719435d98d452de7ac367c828266cf01?s=48 erikaheidi
14
4.5k
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
3
660
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
71
3.7k
Aff5641764408271f7bc398f2097edd0?s=48 denniskardys
220
120k
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
99
11k
A9a491b0fcbe0fbce3d64063a37add99?s=48 rmw
12
870
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
262
11k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
779
240k
1519587b1a0febb658c36c94f6272b0d?s=48 roundedbygravity
242
21k
9952dfcd5d338f8a8e7175c8a8f65fb5?s=48 wjessup
340
16k
A415db3ac9e9668acbc1fb36eead84ac?s=48 mthomps
38
2.3k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved. State of OpenStack Security

    Bryan D. Payne Director of Security Research May 1, 2014

  2. ©2014 Nebula, Inc. All rights reserved. My Background • Focused

    on security my entire career • Spent a few years in school

  3. ©2014 Nebula, Inc. All rights reserved. Nebula One DevOPs/Test Apps

    & Workloads Media Apps & Workloads Other … Apps & Workloads Social Collaboration Apps & Workloads Big Data + Analytics Apps & Workloads Mobile Apps & Workloads Compute Storage Network Identity/Security Management/Orchestration/API Interface Turnkey Infrastructure as a Service (IaaS) Block Object 1000+  companies  contributing  to  OpenStack Industry Standard Servers

  4. ©2014 Nebula, Inc. All rights reserved. OSSG HISTORY

  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ©2014 Nebula, Inc. All rights reserved. LOOKING FORWARD

  38. ©2014 Nebula, Inc. All rights reserved. Key OSSG Projects •

    OpenStack Security Guide (aka “the book”) • OpenStack Security Notes (OSSN) • Threat Modeling & Analysis

  39. ©2014 Nebula, Inc. All rights reserved. Mid-Term Goals • Quality

    work in three key projects • More formal acceptance in community • Increase collaboration with core devs

  40. ©2014 Nebula, Inc. All rights reserved. OpenStack Projects “The Glue”

    Improve available security Document best practices Simplify security compliance Work with builders, ops, users

  41. ©2014 Nebula, Inc. All rights reserved. QUESTIONS Email: bryan.payne@nebula.com Twitter:

    @bdpsecurity