OpenStack Cloud Security

Your OpenStack cloud storage contains all your vital computing resources and potentially sensitive data – secure it with this essential OpenStack tutorial
Preview in Mapt

OpenStack Cloud Security

Fabio Alessandro Locati

1 customer reviews
Your OpenStack cloud storage contains all your vital computing resources and potentially sensitive data – secure it with this essential OpenStack tutorial

Quick links: > What will you learn?> Table of content> Product reviews

Mapt Subscription
FREE
$29.99/m after trial
eBook
$14.00
RRP $27.99
Save 49%
Print + eBook
$34.99
RRP $34.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$14.00
$34.99
$29.99 p/m after trial
RRP $27.99
RRP $34.99
Subscription
eBook
Print + eBook
Start 14 Day Trial

Frequently bought together


OpenStack Cloud Security Book Cover
OpenStack Cloud Security
$ 27.99
$ 14.00
Learning OpenStack Networking (Neutron) Book Cover
Learning OpenStack Networking (Neutron)
$ 26.99
$ 13.50
Buy 2 for $27.50
Save $27.48
Add to Cart

Book Details

ISBN 139781782170983
Paperback160 pages

Book Description

OpenStack is a system that controls large pools of computing and networking resources, along with cloud storage, allowing its users to provision resources through a user-friendly interface. OpenStack helps developers with features such as rolling upgrades, federated identity, and software reliability.

You will begin with basic security policies, such as MAC, MLS, and MCS, and explore the structure of OpenStack and virtual networks with Neutron. Next, you will configure secure communications on the OpenStack API with HTTP connections. You will also learn how to set OpenStack Keystone and OpenStack Horizon and gain a deeper understanding of the similarities/differences between OpenStack Cinder and OpenStack Swift.

By the end of this book, you will be able to take full control of your hypervisor to make it safer and a smart choice based on your needs. You can be confident that your cloud storage and wider pool of recources will be secure from today's many security threats.

Table of Contents

Chapter 1: First Things First – Creating a Safe Environment
Access control
The CIA model
The principles of security
Data center security
Server security
The importance of logs
The people aspect of security
Summary
Chapter 2: OpenStack Security Challenges
Private cloud versus public cloud security
The different kinds of security threats
The possible attacks
The OpenStack structure
Future components
Summary
Chapter 3: Securing OpenStack Networking
The Open Systems Interconnection model
TCP/IP
Architecting secure networks
Generic Routing Encapsulation (GRE)
Flat network versus VLAN versus GRE in OpenStack Quantum
Design a secure network for your OpenStack deployment
Virtual Private Network as a Service (VPNaaS)
Summary
Chapter 4: Securing OpenStack Communications and Its API
Encryption security
Symmetric encryption
Asymmetric encryption
Symmetric/asymmetric comparison and synergies
Hashing
Public key infrastructure
Cipher security
Designing a redundant environment for your APIs
Secure your OpenStack API with TLS
Enforcing HTTPS for future connections
Summary
Chapter 5: Securing the OpenStack Identification and Authentication System and Its Dashboard
Identification versus authentication versus authorization
Identification
Authentication
Authorization
Session management
Federated identity
Configuring OpenStack Keystone to use Apache HTTPd
Setting up Keystone as a Identity Provider
Configuring Shibboleth
Summary
Chapter 6: Securing OpenStack Storage
Different storage types
Backends
Security
Securing OpenStack Swift
Summary
Chapter 7: Securing the Hypervisor
Various types of virtualization
Hypervisors
Baremetal
Containers
Docker
Linux Containers
Criteria for choosing a hypervisor
Hardening the hardware management
sVirt – SELinux and virtualization
Hardening the host operative system
Summary

What You Will Learn

  • Secure your servers, data center, and network to improve your environment for the cloud
  • Gain insights into ISP intercept and social engineering
  • Explore automated attacks with the help of mass phishing, brute force, and automated exploitation tools
  • Secure your OpenStack installation from a networking perspective at both low and high levels
  • Get to know how to secure your OpenStack to use only encrypted communications for APIs
  • Configure secure communications on the OpenStack API
  • Harden OpenStack Keystone and Horizon for a more secure environment
  • Protect the Swift replication mechanism through network hardening

Authors

Table of Contents

Chapter 1: First Things First – Creating a Safe Environment
Access control
The CIA model
The principles of security
Data center security
Server security
The importance of logs
The people aspect of security
Summary
Chapter 2: OpenStack Security Challenges
Private cloud versus public cloud security
The different kinds of security threats
The possible attacks
The OpenStack structure
Future components
Summary
Chapter 3: Securing OpenStack Networking
The Open Systems Interconnection model
TCP/IP
Architecting secure networks
Generic Routing Encapsulation (GRE)
Flat network versus VLAN versus GRE in OpenStack Quantum
Design a secure network for your OpenStack deployment
Virtual Private Network as a Service (VPNaaS)
Summary
Chapter 4: Securing OpenStack Communications and Its API
Encryption security
Symmetric encryption
Asymmetric encryption
Symmetric/asymmetric comparison and synergies
Hashing
Public key infrastructure
Cipher security
Designing a redundant environment for your APIs
Secure your OpenStack API with TLS
Enforcing HTTPS for future connections
Summary
Chapter 5: Securing the OpenStack Identification and Authentication System and Its Dashboard
Identification versus authentication versus authorization
Identification
Authentication
Authorization
Session management
Federated identity
Configuring OpenStack Keystone to use Apache HTTPd
Setting up Keystone as a Identity Provider
Configuring Shibboleth
Summary
Chapter 6: Securing OpenStack Storage
Different storage types
Backends
Security
Securing OpenStack Swift
Summary
Chapter 7: Securing the Hypervisor
Various types of virtualization
Hypervisors
Baremetal
Containers
Docker
Linux Containers
Criteria for choosing a hypervisor
Hardening the hardware management
sVirt – SELinux and virtualization
Hardening the host operative system
Summary

Book Details

ISBN 139781782170983
Paperback160 pages
Read More
From 1 reviews

Read More Reviews

Recommended for You

Learning OpenStack Networking (Neutron) Book Cover
Learning OpenStack Networking (Neutron)
$ 26.99
$ 13.50
OpenStack: Building a Cloud Environment Book Cover
OpenStack: Building a Cloud Environment
$ 71.99
$ 36.00
Learning OpenStack Networking (Neutron) - Second Edition Book Cover
Learning OpenStack Networking (Neutron) - Second Edition
$ 39.99
$ 20.00
Learning OpenStack High Availability Book Cover
Learning OpenStack High Availability
$ 31.99
$ 16.00
OpenStack for Architects Book Cover
OpenStack for Architects
$ 31.99
$ 16.00
OpenStack Orchestration Book Cover
OpenStack Orchestration
$ 31.99
$ 16.00