Topic: OpenStack Security
Security is a primary concern for cloud users and deployers alike. OpenStack in particular has a very active and vibrant community, with over 1800 contributors to the latest release, but also faces the same security challenges that any large software project does. How should we deal with vulnerabilities? What secure configuration choices should I use when deploying a cloud? As a developer what do I need to know to write secure code? Since 2012 the OpenStack security project has existed to help answer these questions and develop tools and guidance. This talk will briefly discuss the various initiatives the OpenStack security project are involved in and provide information for interested developers, security professionals, and students to get involved.
Travis McPeak is a Security Architect for the HPE Helion team, an active member of the OpenStack Security Project, and a core developer on a security tool called Bandit. He enjoys all aspects of product security, from code reviews and penetration testing to tools development.
Eric Brown is a Senior Member of Technical Staff for VMware where he focuses on security. He is an active member of the OpenStack Security Project, and a core developer on a security tool called Bandit. He also participates in other OpenStack projects such as Nova and Keystone.
Attend remotely via hangout. The link will be posted as a comment here and tweeted out 15 minutes before the meetup starts.