Upgrade to Pro — share decks privately, control downloads, hide ads and more …

State of OpenStack Security

Bryan Payne
May 01, 2014
Technology
0
57

State of OpenStack Security

Bryan Payne

May 01, 2014
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
bdpayne
0
220
BLESS: Better Security and Ops for SSH Access
bdpayne
3
680
Securing Containers the Netflix Way
bdpayne
1
2.1k
PKI at Scale Using Short-Lived Certificates
bdpayne
0
810
Platform Security Jobs at Netflix
bdpayne
0
840
Improving Cloud Security with Attacker Profiling
bdpayne
2
810
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
bdpayne
4
1.6k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
bdpayne
0
190
Platform Security at Netflix: Securing Microservices from the Ground Up
bdpayne
0
5.6k

Other Decks in Technology

See All in Technology
AI完全初心者でも最新の生成AIの仕組がわかった気になれるプレゼン
shimap_sampo
5
1.7k
Large Language Models: From Prototype to Production
inesmontani
PRO
8
2.8k
よくわかるフォルシアのエンジニア 旅行プラットフォーム部編
forcia_dev_pr
0
150
Autonomous Database - Dedicated 技術詳細 / adb-d_technical_detail_jp
oracle4engineer
PRO
1
2.7k
株式会社オプティム_採用会社紹介資料 / optim-recruit
optim
0
9.6k
Spring Boot 2 から 3 へバージョンアップしてみた
red_frasco
0
140
Oracle Exadata Database Service on [email protected] X9M ([email protected]) 技術詳細
oracle4engineer
PRO
0
1.5k
GO TechTalk #19 タクシーアプリ『GO』事業成長を支えるデータ分析基盤の継続的改善!
mot_techtalk
2
930
Data-Centric AIのためのベンチマーク
x_ttyszk
1
590
Microsoft Build 2023 ふりかえり - IoT と AI 周りを中心に
mode86
0
150
net/http/httptest.Server のアプローチをテスト戦略に活用する / Go Conference 2023
k1low
7
1k
1人目QA奮闘記-2023年ver-/QA Engineer's Struggle 2023
mii3king
1
640

Featured

See All Featured
Learning to Love Humans: Emotional Interface Design
aarron
264
38k
Intergalactic Javascript Robots from Outer Space
tanoku
263
26k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
32
8.4k
Three Pipe Problems
jasonvnalue
89
9.1k
Designing on Purpose - Digital PM Summit 2013
jponch
108
6k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
123
29k
The MySQL Ecosystem @ GitHub 2015
samlambert
240
11k
What’s in a name? Adding method to the madness
productmarketing
PRO
14
2.1k
No one is an island. Learnings from fostering a developers community.
thoeni
13
1.7k
Building Effective Engineering Teams - LeadDev
addyosmani
5
600
Typedesign – Prime Four
hannesfritz
34
1.6k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
217
21k

Transcript

  1. ©2014 Nebula, Inc. All rights reserved.
    State of OpenStack Security
    Bryan D. Payne
    Director of Security Research
    May 1, 2014

    View Slide

  2. ©2014 Nebula, Inc. All rights reserved.
    My Background
    • Focused on security my entire career
    • Spent a few years in school

    View Slide

  3. ©2014 Nebula, Inc. All rights reserved.
    Nebula One
    DevOPs/Test
    Apps & Workloads
    Media
    Apps & Workloads
    Other …
    Apps & Workloads
    Social
    Collaboration Apps
    & Workloads
    Big Data
    + Analytics
    Apps & Workloads
    Mobile
    Apps & Workloads
    Compute Storage Network
    Identity/Security
    Management/Orchestration/API Interface
    Turnkey Infrastructure as a Service
    (IaaS)
    Block Object
    1000+  companies  contributing  to  OpenStack
    Industry Standard Servers

    View Slide

  4. ©2014 Nebula, Inc. All rights reserved.
    OSSG HISTORY

    View Slide

  5. View Slide

  6. View Slide

  7. View Slide

  8. View Slide

  9. View Slide

  10. View Slide

  11. View Slide

  12. View Slide

  13. View Slide

  14. View Slide

  15. View Slide

  16. View Slide

  17. View Slide

  18. View Slide

  19. View Slide

  20. View Slide

  21. View Slide

  22. View Slide

  23. View Slide

  24. View Slide

  25. View Slide

  26. View Slide

  27. View Slide

  28. View Slide

  29. View Slide

  30. View Slide

  31. View Slide

  32. View Slide

  33. View Slide

  34. View Slide

  35. View Slide

  36. View Slide

  37. ©2014 Nebula, Inc. All rights reserved.
    LOOKING FORWARD

    View Slide

  38. ©2014 Nebula, Inc. All rights reserved.
    Key OSSG Projects
    • OpenStack Security Guide (aka “the book”)
    • OpenStack Security Notes (OSSN)
    • Threat Modeling & Analysis

    View Slide

  39. ©2014 Nebula, Inc. All rights reserved.
    Mid-Term Goals
    • Quality work in three key projects
    • More formal acceptance in community
    • Increase collaboration with core devs

    View Slide

  40. ©2014 Nebula, Inc. All rights reserved.
    OpenStack Projects “The Glue”
    Improve available security
    Document best practices
    Simplify security compliance
    Work with builders, ops, users

    View Slide

  41. ©2014 Nebula, Inc. All rights reserved.
    QUESTIONS
    Email: [email protected]
    Twitter: @bdpsecurity

    View Slide