Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Security for Private Cloud Environments

53 views

Published on

Interactive Network shares some best practices on securing your private cloud environments.

Published in: Software
  • Be the first to comment

  • Be the first to like this

Security for Private Cloud Environments

  1. 1. Security for Private Cloud Environments John Fitzgerald (john.fitzgerald@internet.de) 1
  2. 2. IaaS ist Grundlage für Cloud Management Computing Networking Storage IaaS Zonen IaaS Cloud (vereinfacht) Keine Notwendigkeit, den Ort eines Dienstes im Detail zu kennen -> alle Dienste in der „Cloud“
  3. 3. Systemaufbau Host OS z.B. Centos Debian Fedora Interactive Cloud OS RedHat SUSE Ubuntu […] Hypervisor z.B. KVM Xen Hyper-V* VMWare* […] Storage z.B. Cinder Ceph DRDB Gluster FS Hadoop NFS […] Network z.B. GRE IP-IP IS-IS Open vSwitch VirtIO VXLan VLAN […] Mgmt. z.B. Horizon Sunstone […] Gast OS z.B. Centos Debian Fedora RedHat SUSE Ubuntu Windows […] Add-On (Optional) z.B. Dokker Seafile Owncloud […] Server Hardware Storage NetworkCPU RAM Gast OS Gast OSGast OS Add- On Add- On Management GUI Gast OS Gast OS Add- On Hypervisor Host Betriebssystem (OS) * = nicht quelloffen Einzelkomponenten (weitere Informationen: www.opencloud.eurocloud.de) (vereinfacht)
  4. 4. Verwundbarkeit Neighbor Attack Host OS Attack Internet
  5. 5. • Whiteboard
  6. 6. Ausfall ARD https://www.ard.de heruntergeladen am 10.9.2019 um 11:58 CEST John Fitzgerald (john.fitzgerald@internet.de) 6
  7. 7. Best Practice Compute Nodes Office DMZ DMZ 2 Controller One firewalls VMs Internet ssh /xml <oneway> Management via VPN / Tunnel Retrieve information configure oobm <one-way> VM Management
  8. 8. Serverzyklus(exemplarisch) KUNDEN- APPLIKATION

×