Visit the OpenStack Summit page for the latest news, registration and hotels.
Monday, November 3 • 17:10 - 17:50
Secure Keystone Deployment: Lessons Learned and Best Practices

Sign up or log in to save this to your schedule and see who's attending!

In the Juno summit, Symantec presented it's perspective on securing Keystone.  Security is really a mindset and process. We proposed a layered security approach starting with the process for securing Keystone architecture, followed by securing the environment where Keystone is deployed and configured. Since then we have been implementing those security measures in our production environment. In this talk, we will discuss exactly how we have made our Keystone deployment secure and what we have learnt along the way.

Specifically, we will cover:

  • Keystone's LDAP capabilities

    • User account management

  • Two factor authentication

  • How to avoid storing plaintext password in configuration files?

  • Generic guidelines on how to secure OpenStack endpoints

  • Autonomous authentication using Trusts

  • How to secure Keystone event notifications?

  • Keystone Intrusion Detection


avatar for Priti Desai

Priti Desai

Advisory Software Engineer, IBM
Priti is an Advisory Software Engineer at IBM and part of various OpenStack projects including Keystone and OpenStack Security Projects (formally known as OpenStack Security Group). She is looking forward to getting more involved with the community.

Monday November 3, 2014 17:10 - 17:50
Room 243

Attendees (0)