Nothing clears out a conference room faster than a discussion around information security. Securing complex computer systems, such as OpenStack clouds, is extremely difficult. To make matters worse, attackers can make many mistakes without consequences. A defender’s single mistake could lead to a breach.
Don't let fear rule the discussion around security.
Operators need a simple and scalable method for securing OpenStack clouds. That starts with grouping components into compartments and then looking at how those compartments interact with each other. Those interactions form the backbone of security policies and technical controls.
In this vendor-neutral talk, Major Hayden, principal architect at Rackspace, will break down the complexity of securing OpenStack clouds using real-world scenarios. Attendees will learn how to:
- Divide OpenStack deployments into compartments
- Analyze the interactions between each component
- Develop security policies and apply technical controls
Attendees will learn vendor-neutral methods to secure OpenStack clouds (and other complex systems) using a holistic strategy.
This starts with an introduction to the concept of compartmentalized security in an OpenStack environment. Attendees will learn how to analyze a complex system, understand the sensitivity of data and where that data is stored.
Attendees will see how these compartments interact with each other and how to apply security policy to these interactions. That will lead into a discussion around implementing useful security controls that are scalable and repeatable.