Back To Schedule
Monday, May 12 • 2:50pm - 3:30pm
Learning to Trust the Cloud / Securing OpenStack with Intel Trusted Computing (Combined)

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Cloud computing provides obvious economic and manageability benefits. Unused resources in production environments can be used to deploy development instances. Public clouds mean we can avoid buying rooms full of mostly idle hardware just to cater for worst case scenarios. And, thanks to hypervisors imposing isolation between instances, this should all come at no cost to security.
But is that true? What happens if someone does break out of a guest? What damage can they do? How can we detect it? What's the absolutely worst case scenario? With increasing levels of concern over low-level system vulnerabilities, how can we reassure users that their cloud environments are secure?
This presentation will cover the various techniques and technologies required to build a truly trustworthy cloud, ranging from boot attestation to runtime introspection. It will also discuss techniques that attackers can potentially use to gain persistent access to systems, perhaps even over reinstallation.


Matthew Garrett

Principal Security Software Engineer, CoreOS
Matthew Garrett is a security developer at CoreOS, specialising in the areas where software starts knowing a little more about hardware than you'd like. He implemented much of Linux's support for UEFI Secure Boot, does things with TPMs and has found more bugs in system firmware than... Read More →
avatar for Christian Huebner

Christian Huebner

Principal Architect, Mirantis
Christian Huebner works at Mirantis, Inc. as Principal Architect with a focus on Storage and Infrastructure. Coming from conventional storage architecture, Christian moved into cloud storage before joining Mirantis and later into general cloud architecture. He provides architectural... Read More →

Monday May 12, 2014 2:50pm - 3:30pm EDT
Room B101

Attendees (0)