Upgrade to Pro — share decks privately, control downloads, hide ads and more …

State of OpenStack Security

Avatar for Bryan Payne Bryan Payne
May 01, 2014
Technology
0
77

State of OpenStack Security

Avatar for Bryan Payne

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
How To Have Impact In Security: Stories About Risk Reduction At Scale
Avatar for Bryan Payne bdpayne
0
11
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
Avatar for Bryan Payne bdpayne
0
270
BLESS: Better Security and Ops for SSH Access
Avatar for Bryan Payne bdpayne
3
760
Securing Containers the Netflix Way
Avatar for Bryan Payne bdpayne
1
2.4k
PKI at Scale Using Short-Lived Certificates
Avatar for Bryan Payne bdpayne
0
890
Platform Security Jobs at Netflix
Avatar for Bryan Payne bdpayne
0
880
Improving Cloud Security with Attacker Profiling
Avatar for Bryan Payne bdpayne
2
830
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
Avatar for Bryan Payne bdpayne
4
2k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
Avatar for Bryan Payne bdpayne
0
220

Other Decks in Technology

See All in Technology
Microsoft Defender XDRで疲弊しないためのインシデント対応
Avatar for Kunii, Suguru sophiakunii
1
320
ゼロから始めるSREの事業貢献 - 生成AI時代のSRE成長戦略と実践 / Starting SRE from Day One
Avatar for Shinichi Nakagawa shinyorke
PRO
0
110
PHPからはじめるコンピュータアーキテクチャ / From Scripts to Silicon: A Journey Through the Layers of Computing
Avatar for HASEGAWA Tomoki tomzoh
2
120
SRE with AI:実践から学ぶ、運用課題解決と未来への展望
Avatar for Ryo Yoshii yoshiiryo1
0
320
shake-upを科学する
Avatar for Jack rsakata
7
1k
ClaudeCode_vs_GeminiCLI_Terraformで比較してみた
Avatar for t-kikuchi tkikuchi
1
1.1k
How to Quickly Call American Airlines®️ U.S. Customer Care : Full Guide
Avatar for goldfinch3710 flyaahelpguide
0
240
今だから言えるセキュリティLT_Wordpress5.7.2未満を一斉アップデートせよ
Avatar for CUEBiC Inc. cuebic9bic
2
170
SREのためのeBPF活用ステップアップガイド
Avatar for Sohei Iwahori egmc
2
1.3k
Bill One 開発エンジニア 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
4
13k
研究開発部メンバーの働き⽅ / Sansan R&D Profile
Avatar for Sansan, Inc. sansan33
PRO
3
18k
マルチプロダクト環境におけるSREの役割 / SRE NEXT 2025 lunch session
Avatar for sugamasao sugamasao
1
730

Featured

See All Featured
Code Reviewing Like a Champion
Avatar for maltzj maltzj
524
40k
Why Our Code Smells
Avatar for Brandon Keepers bkeepers
PRO
337
57k
Improving Core Web Vitals using Speculation Rules API
Avatar for Sergey Chernyshev sergeychernyshev
18
990
What's in a price? How to price your products and services
Avatar for Michael Herold michaelherold
246
12k
Designing for Performance
Avatar for Lara Hogan lara
610
69k
Faster Mobile Websites
Avatar for Dean Hume deanohume
308
31k
Building an army of robots
Avatar for Kyle Neath kneath
306
45k
Understanding Cognitive Biases in Performance Measurement
Avatar for Philip Tellis bluesmoon
29
1.8k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
Avatar for Tammy Everts tammyeverts
53
2.9k
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
71
11k
Building Flexible Design Systems
Avatar for Yesenia Perez-Cruz yeseniaperezcruz
328
39k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
Avatar for Eileen M. Uchitelle eileencodes
138
34k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved. State of OpenStack Security

    Bryan D. Payne Director of Security Research May 1, 2014

  2. ©2014 Nebula, Inc. All rights reserved. My Background • Focused

    on security my entire career • Spent a few years in school

  3. ©2014 Nebula, Inc. All rights reserved. Nebula One DevOPs/Test Apps

    & Workloads Media Apps & Workloads Other … Apps & Workloads Social Collaboration Apps & Workloads Big Data + Analytics Apps & Workloads Mobile Apps & Workloads Compute Storage Network Identity/Security Management/Orchestration/API Interface Turnkey Infrastructure as a Service (IaaS) Block Object 1000+  companies  contributing  to  OpenStack Industry Standard Servers

  4. ©2014 Nebula, Inc. All rights reserved. OSSG HISTORY

  5. None
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None
  15. None
  16. None
  17. None
  18. None
  19. None
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None

  37. ©2014 Nebula, Inc. All rights reserved. LOOKING FORWARD

  38. ©2014 Nebula, Inc. All rights reserved. Key OSSG Projects •

    OpenStack Security Guide (aka “the book”) • OpenStack Security Notes (OSSN) • Threat Modeling & Analysis

  39. ©2014 Nebula, Inc. All rights reserved. Mid-Term Goals • Quality

    work in three key projects • More formal acceptance in community • Increase collaboration with core devs

  40. ©2014 Nebula, Inc. All rights reserved. OpenStack Projects “The Glue”

    Improve available security Document best practices Simplify security compliance Work with builders, ops, users

  41. ©2014 Nebula, Inc. All rights reserved. QUESTIONS Email: [email protected] Twitter:

    @bdpsecurity