Hear experts from Cisco, Red Hat, Suse and more.

image

Join the people building and operating open infrastructure at the OpenStack Summit Vancouver in May.  The Summit schedule features over 25 events — presentations, workshops, fishbowls, lightning talks — covering public cloud.

Here we’re highlighting some of those sessions; be sure to catch sessions on the OpenStack Global Passport Program, a collaborative effort between OpenStack public cloud providers that allow users to experience the freedom, performance and interoperability of open source infrastructure.

Check out all the sessions, workshops and lightning talks focusing on public cloud here.

Stretching your application from OpenStack into public cloud

Multiple clouds are a must in today’s IT world to prevent vendor lock-in, provide redundancy, a migration path and other benefits. Developers and IT admins demand that applications and the micro-services that comprise them prove capable of running in multiple environments. A service mesh, instantiated by Istio, provides a new paradigm for connecting, managing and securing micro-services. With services running in multiple clouds, service mesh has to be established across the clouds. In this presentation, Cisco’s John Joyce and Timothy Swanson will show how an application can be stretched between two disparate cloud environments–public cloud and an OpenStack based cloud. Details here.

OpenStack for AWS architects: Similarities, differences and bridging the gap

Architects often use only use one tool and to a carpenter with only a hammer, everything looks like a nail. Adding OpenStack to the tool belt opens up a whole new world of possibilities and solutions for on-premise cloud challenges. In this beginner-level presentation, Ben Silverman of OnX Enterprise Solutions will talk about how to bridge the two platforms by making direct connections from OpenStack projects to AWS products and discuss the commonalities and differences in product features and architecture. He’ll also dive into the ways both platforms solve complex business challenges and how each platform is uniquely suited to solving certain use cases. Of course, no AWS/OpenStack presentation would be complete without discussing hybrid and multi-cloud scenarios and how to use some of the products we discuss in a multi-modal architecture. Details here.

Closing automation and DNS security gaps in today’s dynamic world

Even though security is top of mind for every telco and organization across the world, security holes for DNS are still a major concern. Over 95% of tested organizations allowed data exfiltration via DNS tunnels because existing tools allow open DNS communications.Two critical DNS gaps occur in traditional NFV and containers deployments – lack of IP address automation and DNS-based security risks. In this demo, Infoblox’s Philip Miller and Matt Gowarty will highlight how carrier-grade DNS and IP address management (IPAM) closes these gaps. The demo will highlight how data can easily be stolen via DNS, and more importantly, how to prevent this risk. Details here.

Is the public cloud really eating OpenStack’s lunch?

This session from Red Hat’s Margaret Dawson will walk through what’s real and what’s hype in the public cloud world and show how customers are using OpenStack to solve real-world problems and power next-generation applications. Attendees will learn how to align workloads to the right infrastructure and how to develop a cloud strategy. This is vendor-agnostic session will include customer case studies and global research results. Details here.

Enabling cloud-native applications with Application Credentials in Keystone

Keystone has long been the barrier blocking cloud-native applications from truly automation-compatible support. Applications, deployment tools and OpenStack services have all required dedicated keystone users whose passwords are committed to configuration files. This talk from Suse’s Colleen Murphy introduces Application Credentials, a new feature in the Queens release of keystone that enables applications and automation to authenticate with keystone without requiring a dedicated keystone user, allows graceful rotation of credentials with minimal downtime, and encourages restrictive permissions delegation to applications. Details here.

Encrypt your volumes with Barbican

If you’re interested in volume encryption to secure your environment, this advanced session will show how to design and implement a volume encryption service based on the Barbican project. Using lessons learned from OnRamp’s VPC, engineer Duncan Wannamaker will review the design journey from soup to nuts, including outlining requirements, choosing from the available open source platforms, developing the architecture and implementing the volume encryption. OnRamp built and deployed a volume encryption service for their virtual private cloud, allowing users to encrypt their volumes. Each volume the VPC users provision is encrypted with a unique key, ensuring that their data is not readable by other tenants in the cloud. Wannaker will offer up a demo of how to create an encryption key, integrate Cinder with Barbican, and create and attach encrypted volumes. Details here.

See you at the OSF Summit in Vancouver, May 21-24, 2018! Register here.