OpenStack Summit May 2015 Vancouver has ended
Thursday, May 21 • 2:20pm - 3:00pm
Security through community: How the security group is building security into each OpenStack release

Sign up or log in to save this to your schedule and see who's attending!

The OpenStack Security Group exists to actively drive security features, best practice and guidance into OpenStack services. In the last year a number of projects have taken off and are now ready for wider adoption in OpenStack.

In this talk we review the various projects that are currently running as part of the OSSG and their impact on OpenStack. We will share the benefits of each project while we seek adoption from more OpenStack developers as well as seek more active engagement from the community.

Projects we will share and discuss:


  • Anchor: Ephemeral PKI

  • The OpenStack Security Guide (It’s an actual book!)

  • Bandit: Static Analysis for Python

  • Threat Analysis Efforts

  • OpenStack Security Notes

  • Cryptographic Audits

  • Vulnerability Metrics and Tracking


Our talk will finish with a close look at those areas that need more development and a Q&A with the audience on desirable activities for the direction of future OpenStack security projects


avatar for Robert Clark

Robert Clark

Lead Security Architect, HP
Robert is a HP Distinguished Technologist, the lead security architect for HP Helion OpenStack and the current PTL of the OpenStack Security team. His career has its roots in threat modelling, vulnerability analysis and virtualization security. He is passionate about security and... Read More →

Thursday May 21, 2015 2:20pm - 3:00pm
Room 114/115

Attendees (0)