filmov
tv
At-rest Encryption in OpenStack Swift
Показать описание
John Dickinson
Recently, the OpenStack Swift project released a feature that implements server-side encryption. The feature is designed to protect user data from being exposed if drives were to leave the cluster, something that can happen intentionally through an RMA process or unintentionally from mistakes or malicious intent. If drives leave the cluster, we want to be sure that the users' data is protected and impossible to recover. Swift's at-rest encryption feature encrypts user data and metadata with AES using a unique key for every object stored.
In this talk, we will cover the details of how the server-side encryption works, including the on-disk format, and we'll dig into the key-management used. Also, we'll discuss the ways in which this feature can be improved to support more advanced functionality and more robust key management.
Recently, the OpenStack Swift project released a feature that implements server-side encryption. The feature is designed to protect user data from being exposed if drives were to leave the cluster, something that can happen intentionally through an RMA process or unintentionally from mistakes or malicious intent. If drives leave the cluster, we want to be sure that the users' data is protected and impossible to recover. Swift's at-rest encryption feature encrypts user data and metadata with AES using a unique key for every object stored.
In this talk, we will cover the details of how the server-side encryption works, including the on-disk format, and we'll dig into the key-management used. Also, we'll discuss the ways in which this feature can be improved to support more advanced functionality and more robust key management.
0:46:44
At-rest Encryption in OpenStack Swift
0:37:22
Swift Object Encryption
0:39:33
New in Swift: Object Encryption
0:02:17
CyberTip 4 Encryption at Rest
0:28:56
Securing OpenStack Clouds with Cinder Volume Encryption - for Real This Time!
0:41:54
Finally FDE - OpenStack Full Disk Encryption and Missing Pieces
0:12:42
Simpler Encrypted Volume Management with Tang
0:09:18
How to Encrypt and Decrypt with swift 3 app
0:44:22
Cloud Keep: OpenStack Key Management as a Service
0:44:23
How to Integrate OpenStack Swift to Your 'Legacy' System
0:04:15
Securing API authentication on OpenStack cloud
0:07:42
Encryption for OpenStack Cinder Block Storage with Bloombase StoreSafe Intelligent Storage Firewall
0:42:38
Barbican 1.0: Open Source Key Management for OpenStack
0:45:05
OpenStack Swift by Christian Schwede, Red Hat
0:16:02
Storage Made Easy - Data Governance on OpenStack
0:36:35
Encrypt your Volumes with Barbican
0:37:13
Are Your Secrets Secure?
0:30:37
Amp up OpenStack Swift
0:08:07
2015 OpenStack Vancouver - Andrew Gaul – Introduction to S3Proxy and SwiftProxy
0:41:06
Secure Data Analysis with OpenStack and Asperathos
0:40:06
How to deliver High Performance OpenStack Cloud: Christoph Dwertmann, Vault Systems
0:37:36
Common Use Cases and Options for Barbican in Your OpenStack Deployment
0:27:08
Extend Swift by Developing Your Own Middlewares
0:39:58
Extending Barbican - Managing Secrets and Events Your Way
Комментарии