Oath Visit

3 Jul 2018, 09:00 → 5 Jul 2018, 17:00 Europe/Zurich

Visit from OATH to discuss large scale clouds and related activities.

Draft points to discuss on the agenda here.

Tuesday, 3 July

09:30 → 10:00 Oath - Cloud Infrastructure

10:00 → 10:30 CERN - Cloud Infrastructure

OpenStack Nordics - 1.0.pdf

OpenStack Nordics - 1.0.pdf

OpenStack Nordics - 1.0.pptx

10:30 → 12:00 Cloud Operations - Challenges

12:00 → 13:30 LUNCH

13:30 → 17:00 CellsV2 - Challenges

Wednesday, 4 July

09:00 → 11:00 Nova Network -> Neutron

11:00 → 12:00 Security and usability go hand in hand: build secure products from the ground up with Athenz

Authentication and authorization for humans is, more or less, a solved problem. However, how do you trust the identity of the hosts (instances) in your cloud? How can you be assured that in a world of man-in-the-middle attacks (arp spoofing, dns cache poisoning, etc) that a given instance really is who it claims to be? And how can we do this without requiring any manual intervention on the part of a human.

At Oath, we’ve leveraged the power of Open Source to solve exactly this problem. We have developed and open sourced a service authentication and authorization system called Athenz. By leveraging the strengths of OpenStack and Athenz, we’ve created a solution called ‘Copper Argos’ to provide attestable identity in the form of a unique short lived x509 and SSH host certificate for every single instance in our cloud. In this talk we will describe the value and design of this system and its components as well as the potential it unlocks.

Speaker: James Penick (Oath)

Computing Seminar Link

12:00 → 13:30 LUNCH

13:30 → 14:30 DCVP / Data Centre - Visit

14:30 → 16:30 Ask me anything

Tracking document for questions

Thursday, 5 July

09:00 → 12:30 Ironic - Operations

Oath_Visit__Ironic_Topics

12:30 → 13:30 LUNCH

13:30 → 14:30 Visit - AD

14:30 → 16:00 Ironic - Operations