The Core Infrastructure Initiative is a Linux Foundation project that develops criteria and validates open source projects meeting best practices for security, quality and stability. OpenStack is now validated by a trusted third party and is 100% compliant.
OpenStack security is a collaborative effort across thousands of developers who work together to ensure that OpenStack provides a robust, reliable, and secure cloud for public, private, and hybrid deployments. Securing OpenStack is an extension of a well-understood problem― securing normal IT infrastructure, like keeping the infrastructure patched, reducing attack surfaces, and managing logging and auditing.
The OpenStack Security Project, and the Vulnerability Management Team (VMT) within it, coordinates the work needed to identify, limit, and resolve security issues and vulnerabilities across the OpenStack projects.
The Securing OpenStack Clouds brief will answer important questions such as:
In this paper, we’ll address some of the questions about security, compliance and privacy we’ve received from users and technologists. We’ll demonstrate OpenStack readiness for your workloads, and facilitate trust and relationships between your team and the OpenStack community.Download The Report
More on OpenStack security and opinions from the analysts.