The Rostyslav Slipetskyy Thesis
Security Issues in OpenStack from oldbam This is a pretty awesome bit of work done by a researcher in Denmark. I enjoyed reading it and I highly recommend it as day 1 reading for Infosec professionals...
View ArticleRasib Hassan Khan Thesis on OpenID Auth in OpenStack
This is an interesting read if you are considering deploying OpenID inside of OpenStack. Download Full Thesis PDF Here
View ArticleNicolae Paladi Master Thesis – Trusted Computing and Secure Virtualization in...
Just started perusing the Master Thesis list on the “soda” server at the Swedish Institute of Computer Science. This one looks like a lot of fun. I’ve only done a quick preliminary scan of the work,...
View ArticleAryan TaheriMonfared / Martin G Jaatun – Handling Compromised Components in...
This one looks really fun too! A paper on handling compromised components of IaaS with a specific use case in OpenStack. Definitely worth a read. Abstract on Journal of Cloud Computing Download...
View ArticleJournal on Cloud Computing : SCC
This is the Security in Cloud Computing Series at the Journal of Cloud Computing. Worth tracking. Lots of great content. http://www.journalofcloudcomputing.com/series/SCC
View ArticleNot quite security or openstack related.
But definitely worth watching. Jeff Lindsay of many fames, biggest probably being Twilio, has some great and interesting views on the future of services and automation. Good fodder for future thoughts...
View ArticleShmoocon Talk On-Line
This is my talk from Shmoocon in February. Sort of an intro to the structure of OpenStack ( at that time folsom ) with an eye towards providing auditors a map to find the the areas they want to test....
View ArticleClik here to view.
OpenStack Security Guide ( OFFICIAL ) Released
This is a little behind the curve, but several OSSG members and developers met up in Atlanta Georgia to do a book sprint on writing up a security hardening guide for OpenStack. I’ve read through it...
View ArticleJoCCASA: Trust mechanisms for cloud computing
I occasionally read the Journal of Cloud Computing from SpringerOpen, today I caught up on this work: Trust mechanisms for cloud computing by Jingwei Huang* and David M Nicol Basically what’s being...
View ArticleClik here to view.
The Dangers of IPMI
IPMI has become a fundamental component of data center automation. It’s how we tell boxes to boot, reboot, or boot from pxe. It’s how we avoid having to send people into the forbidding depths of our...
View Article
