Thursday, April 18 • 5:00pm - 5:40pm
Securing OpenStack's Underside: True Computing

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

There have been a number of premature attempts to provide a trusted computing platform for IaaS software; however, all of met with failure and a lack of mass market adoption. What would be required to solve this problem for real and deliver "true" computing? True computing requires the ability to have a trusted chain of events related to the provisioning and deployment of hardware and software. It requires integration to the supply chain with installation of initial keys at the hardware vendor's site, secure PXE booting, system attestation, and robust key management. None of this is easy or free, but what would it look like if OpenStack could become the first truly trusted cloud system? How would it integrate with the current 'trusted-messaging' blueprint? Would it make CloudAudit's API more relevant? 


avatar for Eric Windisch

Eric Windisch

Software Engineer at Docker, Inc., Docker, Inc
Eric Windisch is a veteran contributor to OpenStack across multiple projects. He is best known for his contributions of ZeroMQ messaging and the Docker virt driver for OpenStack Compute. Eric also initiated the oslo.db effort and is a co-author of the OpenStack Security Guide.

Thursday April 18, 2013 5:00pm - 5:40pm
A107+108+109 (Portland Convention Center) 777 NE Martin Luther King Jr Blvd Portland, OR 97232

Attendees (0)