Swift Encryption, OpenStack Tools & Best Practices, BotFactory

Agenda:

6:30 - Meet, greet, eat, & drink

7:00 -- Intro

7:10 -- New Server-side Encryption in OpenStack Swift: 45m

8:10 -- Contributing back, Tools & Best Practices: 45m

1. New Server-side Encryption in OpenStack Swift: What you always wanted to know John Dickinson, Director of Technology, SwiftStack

Abstract:
Encryption is critical to protecting data from information leaks. Swift is one of the most popular open-source object storage systems today, and its recent encryption support gives millions of users the opportunity to have their data protected from these leaks.

Recently, the OpenStack Swift project released a feature that implements server-side encryption. The feature is designed to protect user data from being exposed if drives were to leave the cluster, something that can happen intentionally through an RMA process or unintentionally from mistakes or malicious intent. If drives leave the cluster, we want to be sure that the users' data is protected and impossible to recover. Swift's at-rest encryption feature encrypts user data and metadata with AES using a unique key for every object stored.

In this talk, we will cover the details of how the server-side encryption works, including the on-disk format, and we'll dig into the key-management used. Also, we'll discuss the ways in which this feature can be improved to support more advanced functionality and more robust key management.

Bio:
John Dickinson joined SwiftStack in 2012 as Director of Technology, coming from Rackspace where he worked on Rackspace Cloud Files and OpenStack Swift. Swift stores and retrieves arbitrary unstructured data objects via a RESTful, HTTP based API and is highly fault tolerant with its data replication and scale out architecture. As the Project Technical Lead (PTL) for OpenStack Swift since 2011, John continues to drive the Swift community development efforts.

2. Contributing back, Tools & Best Practices in relation to community contributionsMichael Gugino, Cloud Engineer, Walmart

Abstract:
Contributing back to the OpenStack community
Tools and best practices in relation to community contributions
OpenStack contribution infrastructure

Bio:
Michael Gugino works for Walmart on their Cloud Operations team in Reston, Virginia, USA. He has knowledge and experience with Python, Ansible, Puppet, C, MySQL, RabbitMQ, NoSQL, and of course, Linux. Michael contributes regularly to OpenStack-Ansible and other OpenStack projects.