Whether you want to build the software, run it, grow the community or just learn more about it, there will be content, workshops and design sessions for you to attend at the OpenStack Summit, Oct 15-18 in San Diego. Stick around Friday for the first OpenStack service day, a 1/2 day beach cleanup.

Register now! openstacksummitfall2012.eventbrite.com
Back To Schedule
Thursday, October 18 • 1:30pm - 2:10pm
Encrypt. Everything. Everywhere.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

72% of the 21 million health care records that have been compromised in the United States since September of 2009 should have been trivially protected using comprehensive encryption of the data before being written to disk.  See: http://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/breachtool.html

A busy OpenStack compute node might spin up hundreds or thousands of instances per day.  Ephemeral, block, and object storage -- each and every one of these should always be encrypted before being written to the underlying physical media.  Multiple excellent file and disk encrpytion solutions exist in Linux, such as eCryptfs and dmcrypt.  With cryptographic co-processor acceleration (AES-NI) available on most modern CPUs, encryption is essentially "free", having a negligle impact on practical performance.

A forward-thinking, security conscious OpenStack "Grizzly" release should lead the IaaS industry by example, encrypting all guest data.  Everywhere.

avatar for Dustin Kirkland

Dustin Kirkland

CTO, Gazzang, Inc.
Dustin Kirkland drives the technical vision, competitive strategy and product roadmap for Gazzang. Dustin has more than 10 years of experience developing and deploying Linux and other open source-related solutions, and is a co-author of eCryptfs, an enterprise-class, stacked cryptographic... Read More →

Thursday October 18, 2012 1:30pm - 2:10pm PDT
Manchester E

Attendees (0)