Upgrade to Pro — share decks privately, control downloads, hide ads and more …

State of OpenStack Security

Avatar for Bryan Payne Bryan Payne
May 01, 2014
Technology
0
74

State of OpenStack Security

Avatar for Bryan Payne

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
How To Have Impact In Security: Stories About Risk Reduction At Scale
Avatar for Bryan Payne bdpayne
0
6
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
Avatar for Bryan Payne bdpayne
0
270
BLESS: Better Security and Ops for SSH Access
Avatar for Bryan Payne bdpayne
3
750
Securing Containers the Netflix Way
Avatar for Bryan Payne bdpayne
1
2.4k
PKI at Scale Using Short-Lived Certificates
Avatar for Bryan Payne bdpayne
0
890
Platform Security Jobs at Netflix
Avatar for Bryan Payne bdpayne
0
880
Improving Cloud Security with Attacker Profiling
Avatar for Bryan Payne bdpayne
2
830
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
Avatar for Bryan Payne bdpayne
4
2k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
Avatar for Bryan Payne bdpayne
0
210

Other Decks in Technology

See All in Technology
とあるEdTechベンチャーのシステム構成こだわりN選 / edtech-system
Avatar for k.goto gotok365
5
360
正解のない未知(インボイス制度対応)をフルサイクル開発で乗り越える方法 / How to overcome the unknown invoice system with full cycle development
Avatar for CARTA Engineering carta_engineering
0
140
LangfuseではじめるAIアプリのLLMトレーシング
Avatar for Tadashi Shigeoka codenote
0
200
MagicPodが描くAIエージェント戦略とソフトウェアテストの未来
Avatar for MagicPod magicpod
0
270
DynamoDB のデータを QuickSight で可視化する際につまづいたこと/stumbling-blocks-when-visualising-dynamodb-with-quicksight
Avatar for emi emiki
0
170
Amplifyとゼロからはじめた AIコーディング。失敗と気づき
Avatar for k.masachika mkdev10
1
160
猫でもわかるS3 Tables【Apache Iceberg編】
Avatar for Hiroo Katoh kentapapa
2
250
経済メディア編集部の実務に小さく刺さるAI / small-ai-with-editorial
Avatar for Yukiya Nakagawa nkzn
2
450
Part1 GitHubってなんだろう?その2
Avatar for tomokusaba tomokusaba
2
820
自動化の第一歩 -インフラ環境構築の自動化について-
Avatar for Makky12 smt7174
1
140
Google Cloud Next 2025 Recap マーケティング施策の運用及び開発を支援するAIの活用 / Use of AI to support operation and development of marketing campaign
Avatar for Atsushi Yoshikawa atsushiyoshikawa
0
310
TanStack Start 技術選定の裏側 / Findy-Lunch-LT-TanStack-Start
Avatar for Takahiro Ikeuchi iktakahiro
1
170

Featured

See All Featured
Code Reviewing Like a Champion
Avatar for maltzj maltzj
523
40k
Product Roadmaps are Hard
Avatar for C. Todd Lombardo iamctodd
PRO
53
11k
Six Lessons from altMBA
Avatar for Skipper Chong Warson skipperchong
28
3.8k
The Pragmatic Product Professional
Avatar for Laura Van Doore lauravandoore
33
6.6k
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
329
21k
Building an army of robots
Avatar for Kyle Neath kneath
305
45k
CSS Pre-Processors: Stylus, Less & Sass
Avatar for Bermon Painter bermonpainter
357
30k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
Avatar for Dan Newman danielanewman
227
22k
Build The Right Thing And Hit Your Dates
Avatar for Maggie C. maggiecrowley
35
2.7k
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
52
7.6k
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
368
19k
Code Review Best Practice
Avatar for Trisha Gee trishagee
68
18k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved. State of OpenStack Security

    Bryan D. Payne Director of Security Research May 1, 2014

  2. ©2014 Nebula, Inc. All rights reserved. My Background • Focused

    on security my entire career • Spent a few years in school

  3. ©2014 Nebula, Inc. All rights reserved. Nebula One DevOPs/Test Apps

    & Workloads Media Apps & Workloads Other … Apps & Workloads Social Collaboration Apps & Workloads Big Data + Analytics Apps & Workloads Mobile Apps & Workloads Compute Storage Network Identity/Security Management/Orchestration/API Interface Turnkey Infrastructure as a Service (IaaS) Block Object 1000+  companies  contributing  to  OpenStack Industry Standard Servers

  4. ©2014 Nebula, Inc. All rights reserved. OSSG HISTORY

  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ©2014 Nebula, Inc. All rights reserved. LOOKING FORWARD

  38. ©2014 Nebula, Inc. All rights reserved. Key OSSG Projects •

    OpenStack Security Guide (aka “the book”) • OpenStack Security Notes (OSSN) • Threat Modeling & Analysis

  39. ©2014 Nebula, Inc. All rights reserved. Mid-Term Goals • Quality

    work in three key projects • More formal acceptance in community • Increase collaboration with core devs

  40. ©2014 Nebula, Inc. All rights reserved. OpenStack Projects “The Glue”

    Improve available security Document best practices Simplify security compliance Work with builders, ops, users

  41. ©2014 Nebula, Inc. All rights reserved. QUESTIONS Email: [email protected] Twitter:

    @bdpsecurity