Loading…
This event has ended. Create your own event → Check it out
This event has ended. Create your own
View analytic
Thursday, May 21 • 2:20pm - 3:00pm
Security through community: How the security group is building security into each OpenStack release

Sign up or log in to save this to your schedule and see who's attending!

The OpenStack Security Group exists to actively drive security features, best practice and guidance into OpenStack services. In the last year a number of projects have taken off and are now ready for wider adoption in OpenStack.

In this talk we review the various projects that are currently running as part of the OSSG and their impact on OpenStack. We will share the benefits of each project while we seek adoption from more OpenStack developers as well as seek more active engagement from the community.

Projects we will share and discuss:

 

  • Anchor: Ephemeral PKI

  • The OpenStack Security Guide (It’s an actual book!)

  • Bandit: Static Analysis for Python

  • Threat Analysis Efforts

  • OpenStack Security Notes

  • Cryptographic Audits

  • Vulnerability Metrics and Tracking

 

Our talk will finish with a close look at those areas that need more development and a Q&A with the audience on desirable activities for the direction of future OpenStack security projects

 

Speakers
avatar for Robert Clark

Robert Clark

Lead Security Architect, HP
Robert is a HP Distinguished Technologist, the lead security architect for HP Helion OpenStack and the current PTL of the OpenStack Security team. His career has its roots in threat modelling, vulnerability analysis and virtualization security. He is passionate about security and driving up standards in OpenStack which he has been working on for the last four years.


Thursday May 21, 2015 2:20pm - 3:00pm
Room 114/115