Presentation at OpenStack Days Mountain West sharing lessons Rackspace has learned building and operating the world's largest OpenStack public cloud and some of the world's largest private clouds.
It has long been debated whether OpenStack is production ready. In this session you will learn how a major bank has gone to production with more than 5000 VMs that delivered the results of a 40% decrease in cost, reduced deployment time to hours not weeks, 56 new technologies introduced, 7 new platforms launched - all in under a year. Learn how their platform built on Rackspace and RHEL, coupled with best of breed open source tooling - SaltStack, Jenkins, Cloudify, and Nexus are the enablers for production-grade OpenStack.
http://sched.co/7fH1
A presentation on the Netflix Cloud Architecture and NetflixOSS open source. For the All Things Open 2015 conference in Raleigh 2015/10/19. #ATO2015 #NetflixOSS
What A No Compromises Hybrid Cloud Looks Like Nati Shalom
Expectation vs. reality of a typical enterprise cloud journey
Lesson learned on how to set a cloud native strategy without compromising on the least common denominator, nor going through a complete rewrite
It has long been debated whether OpenStack is production ready. In this session you will learn how a major bank has gone to production with more than 5000 VMs that delivered the results of a 40% decrease in cost, reduced deployment time to hours not weeks, 56 new technologies introduced, 7 new platforms launched - all in under a year. Learn how their platform built on Rackspace and RHEL, coupled with best of breed open source tooling - SaltStack, Jenkins, Cloudify, and Nexus are the enablers for production-grade OpenStack.
http://sched.co/7fH1
A presentation on the Netflix Cloud Architecture and NetflixOSS open source. For the All Things Open 2015 conference in Raleigh 2015/10/19. #ATO2015 #NetflixOSS
What A No Compromises Hybrid Cloud Looks Like Nati Shalom
Expectation vs. reality of a typical enterprise cloud journey
Lesson learned on how to set a cloud native strategy without compromising on the least common denominator, nor going through a complete rewrite
The Cloud offers real opportunities for full DevOps culture with everything automated and silo free. To make these opportunities come true, one needs to go beyond a simple siloed approach that assumes the IaaS setup is separate from the middleware setup, and altogether different than application deployment.
There is a need for automation of all processes, across layers using a customized workflow approach.
In this talk we will suggest modeling of such workflows and architecture to execute them.
KubeCon EU 2017 Berlin
Helm is not just for simple applications running in simple environments. In this talk, we delve into the depths of Helm, focusing on lifecycle management and continuous delivery (CI/CD) of Kubernetes-native applications in different environments. We show how to extend Helm’s capabilities with plugins and add-ons. We'll also see how sophisticated charts like OpenStack and Deis Workflow use these capabilities to model more complex deployments.
Is Orchestration the Next Big Thing in DevOpsNati Shalom
DevOps processes (such as continuous deployment and delivery) often involve writing many custom scripts that are triggered by the build system. With that approach, it is relatively hard to trace the deployment process and troubleshoot when something goes wrong. Additionally, custom scripts are often not written in an easily understood manner. In this session we will walk through specific DevOps workflows (such as install, update, etc) using Riemann as the framework in subject and see the steps required to automate those processes. We will also discuss how Cloudify uses Riemann to provide simple execution and monitoring of those workflow processes. We will share how one customer, PaddyPower, was able to leverage Cloudify to transition their traditional IT into a DevOps environment, bridging the gap betwe
Deployment Automation on OpenStack with TOSCA and CloudifyCloudify Community
TOSCA (Topology and Orchestration Specification for Cloud Applications) is an emerging standard for modeling complete application stacks and automating their deployment and management. It’s been discussed in the context of OpenStack for quite some time, mostly around Heat. In this session we’ll discuss what TOSCA is all about, why it makes sense in the context of OpenStack, and how we can take it farther up the stack to handle complete applications, both during and after deployment, on top of OpenStack.
Paul Cochrane, Systems Architect, AutoDesk discuss how they use AWS in their business and why they use AWS cloud at the AWS Enterprise Tour - SF - 2010
Illustrated Intro to Containers & KubernetesKaslin Fields
Interested in Containers and want to learn more? This talk will introduce you to the basics of why containers are important, how they work, and how Kubernetes is making containers the DevOps way of the future - through fun comic illustrations and analogies! You'll learn and retain the key points you'll need whether you're trying to convince your leadership that container adoption is right for the company, or talking to that person a few cubes down who just can't seem to stop talking about containers!
(ENT205) AWS and VMware: How to Architect and Manage Hybrid Environments | AW...Amazon Web Services
AWS and VMware is not an either/or decision. Many enterprises are looking to leverage AWS in addition to their existing VMware virtualized environments. They want to choose the right venue for each application and move applications between VMware and AWS as their business needs dictate.
In this session, you hear how RightScale helps customers successfully implement and manage hybrid environments that span AWS and VMware vSphere.
This session covers:- 5 common use cases for hybrid environments - Why VMware isn't the same as a cloud, and what to do about it- Architectural considerations for hybrid environments- Is portability a possibility or a pipe dream?- A demo of a single-pane-of-glass to manage hybrid environments.
Sponsored by RightScale.
How IT at Getty Images Brokers Cloud ServicesRightScale
As enterprise IT teams become brokers of cloud services, they need to embrace new approaches to governance and self-service. The Getty Images IT team will share how they have deployed a self-service portal to entice IaaS consumption on top of their own legacy infrastructure and how they focused on cloud-agnostic automation.
How to Manage VMware vSphere Like AWS and AzureRightScale
With the rapid growth in adoption in public cloud, developers have come to expect easy, fast provisioning and automated management of workloads. Enterprises are seeking to provide the same benefits on their existing VMware infrastructure, but vSphere alone doesn’t satisfy all of the requirements that users demand. We discuss how the RightScale Cloud Appliance for vSphere can make your VMware vSphere clusters provide many of the same benefits as AWS and Azure by enabling the automation and agility that developers need.
What an Enterprise Can Learn from Netflix, a Cloud-native Company (ENT203) | ...Amazon Web Services
In moving its streaming product to the cloud, Netflix has been able to realize tremendous benefits in scalability, performance, and availability. The biggest benefit came from moving to a service-based architecture, which allowed engineering teams to accelerate their development cycle and innovate more quickly. However, cloud migration was a substantial effort. We mobilized resources across the company over several years, reorganized our engineering and operations teams, developed new security policies, migrated to the DevOps operations model, and even embraced a new product architecture. In this talk, we trace the evolution of the Netflix cloud model, both the successes and the challenges, and present them in a way that’s maximally useful to enterprises considering making the move to the cloud.
Automating your OpenStack environment with Chef, Puppet and Cloudify Nati Shalom
This session teaches you how to use configuration and DevOps tools like Chef and Puppet to setup your OpenStack environment by using Cloudify to automate the deployment and orchestration of applications and services in that environment.
Tips Tricks and Tactics with Cells and Scaling OpenStack - May, 2015Belmiro Moreira
Tips Tricks and Tactics with Cells and Scaling OpenStack
OpenStack Design Summit, Paris - May, 2015
Belmiro Moreira - CERN
Matt Van Winkle - Rackspace
Sam Morrison - NeCTAR, University of Melbourne
The Cloud offers real opportunities for full DevOps culture with everything automated and silo free. To make these opportunities come true, one needs to go beyond a simple siloed approach that assumes the IaaS setup is separate from the middleware setup, and altogether different than application deployment.
There is a need for automation of all processes, across layers using a customized workflow approach.
In this talk we will suggest modeling of such workflows and architecture to execute them.
KubeCon EU 2017 Berlin
Helm is not just for simple applications running in simple environments. In this talk, we delve into the depths of Helm, focusing on lifecycle management and continuous delivery (CI/CD) of Kubernetes-native applications in different environments. We show how to extend Helm’s capabilities with plugins and add-ons. We'll also see how sophisticated charts like OpenStack and Deis Workflow use these capabilities to model more complex deployments.
Is Orchestration the Next Big Thing in DevOpsNati Shalom
DevOps processes (such as continuous deployment and delivery) often involve writing many custom scripts that are triggered by the build system. With that approach, it is relatively hard to trace the deployment process and troubleshoot when something goes wrong. Additionally, custom scripts are often not written in an easily understood manner. In this session we will walk through specific DevOps workflows (such as install, update, etc) using Riemann as the framework in subject and see the steps required to automate those processes. We will also discuss how Cloudify uses Riemann to provide simple execution and monitoring of those workflow processes. We will share how one customer, PaddyPower, was able to leverage Cloudify to transition their traditional IT into a DevOps environment, bridging the gap betwe
Deployment Automation on OpenStack with TOSCA and CloudifyCloudify Community
TOSCA (Topology and Orchestration Specification for Cloud Applications) is an emerging standard for modeling complete application stacks and automating their deployment and management. It’s been discussed in the context of OpenStack for quite some time, mostly around Heat. In this session we’ll discuss what TOSCA is all about, why it makes sense in the context of OpenStack, and how we can take it farther up the stack to handle complete applications, both during and after deployment, on top of OpenStack.
Paul Cochrane, Systems Architect, AutoDesk discuss how they use AWS in their business and why they use AWS cloud at the AWS Enterprise Tour - SF - 2010
Illustrated Intro to Containers & KubernetesKaslin Fields
Interested in Containers and want to learn more? This talk will introduce you to the basics of why containers are important, how they work, and how Kubernetes is making containers the DevOps way of the future - through fun comic illustrations and analogies! You'll learn and retain the key points you'll need whether you're trying to convince your leadership that container adoption is right for the company, or talking to that person a few cubes down who just can't seem to stop talking about containers!
(ENT205) AWS and VMware: How to Architect and Manage Hybrid Environments | AW...Amazon Web Services
AWS and VMware is not an either/or decision. Many enterprises are looking to leverage AWS in addition to their existing VMware virtualized environments. They want to choose the right venue for each application and move applications between VMware and AWS as their business needs dictate.
In this session, you hear how RightScale helps customers successfully implement and manage hybrid environments that span AWS and VMware vSphere.
This session covers:- 5 common use cases for hybrid environments - Why VMware isn't the same as a cloud, and what to do about it- Architectural considerations for hybrid environments- Is portability a possibility or a pipe dream?- A demo of a single-pane-of-glass to manage hybrid environments.
Sponsored by RightScale.
How IT at Getty Images Brokers Cloud ServicesRightScale
As enterprise IT teams become brokers of cloud services, they need to embrace new approaches to governance and self-service. The Getty Images IT team will share how they have deployed a self-service portal to entice IaaS consumption on top of their own legacy infrastructure and how they focused on cloud-agnostic automation.
How to Manage VMware vSphere Like AWS and AzureRightScale
With the rapid growth in adoption in public cloud, developers have come to expect easy, fast provisioning and automated management of workloads. Enterprises are seeking to provide the same benefits on their existing VMware infrastructure, but vSphere alone doesn’t satisfy all of the requirements that users demand. We discuss how the RightScale Cloud Appliance for vSphere can make your VMware vSphere clusters provide many of the same benefits as AWS and Azure by enabling the automation and agility that developers need.
What an Enterprise Can Learn from Netflix, a Cloud-native Company (ENT203) | ...Amazon Web Services
In moving its streaming product to the cloud, Netflix has been able to realize tremendous benefits in scalability, performance, and availability. The biggest benefit came from moving to a service-based architecture, which allowed engineering teams to accelerate their development cycle and innovate more quickly. However, cloud migration was a substantial effort. We mobilized resources across the company over several years, reorganized our engineering and operations teams, developed new security policies, migrated to the DevOps operations model, and even embraced a new product architecture. In this talk, we trace the evolution of the Netflix cloud model, both the successes and the challenges, and present them in a way that’s maximally useful to enterprises considering making the move to the cloud.
Automating your OpenStack environment with Chef, Puppet and Cloudify Nati Shalom
This session teaches you how to use configuration and DevOps tools like Chef and Puppet to setup your OpenStack environment by using Cloudify to automate the deployment and orchestration of applications and services in that environment.
Tips Tricks and Tactics with Cells and Scaling OpenStack - May, 2015Belmiro Moreira
Tips Tricks and Tactics with Cells and Scaling OpenStack
OpenStack Design Summit, Paris - May, 2015
Belmiro Moreira - CERN
Matt Van Winkle - Rackspace
Sam Morrison - NeCTAR, University of Melbourne
[Presented at All Things Open 2015 in Raleigh, NC, USA]
OpenStack is one of the fastest-growing and exciting open source projects of our time. OpenStack has drawn together technologists from all over the world to create a cloud operating system and a huge, diverse community behind it. This talk will provide an introduction to OpenStack for newcomers to the project of those who just want to know more. We’ll take a brief look at OpenStack’s history, get a technical overview of the project, learn how to contribute, and check out a few emerging trends and hot topics in the OpenStack world.
Slides from the OpenStack 101 presentation with the SA OpenStackers October Meetup in San Antonio TX.
Link to video: https://www.youtube.com/watch?v=DzrSs0n6nSM
Openstack - An introduction/Installation - Presented at Dr Dobb's conference...Rahul Krishna Upadhyaya
Slide was presented at Dr. Dobb's Conference in Bangalore.
Talks about Openstack Introduction in general
Projects under Openstack.
Contributing to Openstack.
This was presented jointly by CB Ananth and Rahul at Dr. Dobb's Conference Bangalore on 12th Apr 2014.
A well-architected cloud provides a stable IT environment that offers easy access to needed resources, usage-based expenses, extra capacity on demand, disaster recovery, and a secure environment, but a well-architected cloud does not magically build itself. It requires careful consideration of a multitude of factors, both technical and non-technical. There is no single architecture that is "right" for an OpenStack cloud deployment. OpenStack can be used for any number of different purposes, and each of them has its own particular requirements and architectural peculiarities. The use cases covered in this talk include:
• General purpose: A cloud built with common components that should address 80% of common use cases.
• Compute focused: A cloud designed to address compute intensive workloads such as high performance computing (HPC).
• Storage focused: A cloud focused on storage intensive workloads such as data
analytics with parallel file systems.
• Network focused: A cloud depending on high performance and reliable networking, such as a content delivery network (CDN).
The Netflix recipe for migrating your organization from building a datacenter based product to a cloud based product. First presented at the Silicon Valley Cloud Computing Meetup "Speak Cloudy to Me" on Saturday April 30th, 2011
Slides from our introduction to Ceph and OpenStack webinar. You can watch the webinar on demand also here http://www.inktank.com/news-events/webinars/.
Multicloud - Understanding Benefits. Obstacles, and Best ApproachesKenneth Hui
Presentation given at Gartner IT IOCS 2019. Defines multicloud and explains benefits, challenges and recommended practices. Original title was "Multi-Cloud is Mostly BS."
Today's datacenter needs a operating system that helps it run as efficiently as Uber has done for the taxi dispatch industry. One option for such a datacenter OS is a open source software called Mesos. This presentation will explain how Mesos can become the Uber for the datacenter.
Redefining The Hybrid Cloud: Rackspace And The EMC FederationKenneth Hui
A presentation that I will be giving at a series of customer events being held jointly by EMC and Rackspace. The presentation will be updated as needed.
Bridging The Gap: Explaining OpenStack To VMware AdministratorsKenneth Hui
Updated from Kenneth Hui and Scott Lowe's joint talk at the Fall 2013 OpenStack Summit in Hong Kong. This is from a talk given by Cody Bunch and Kenneth Hui at the New England VTUG 2014 Winter Warmer.
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionAggregage
Join Maher Hanafi, VP of Engineering at Betterworks, in this new session where he'll share a practical framework to transform Gen AI prototypes into impactful products! He'll delve into the complexities of data collection and management, model selection and optimization, and ensuring security, scalability, and responsible use.
GridMate - End to end testing is a critical piece to ensure quality and avoid...ThomasParaiso2
End to end testing is a critical piece to ensure quality and avoid regressions. In this session, we share our journey building an E2E testing pipeline for GridMate components (LWC and Aura) using Cypress, JSForce, FakerJS…
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Dr. Sean Tan, Head of Data Science, Changi Airport Group
Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
5. RACKSPACE PUBLIC CLOUD
• 6 Geographic regions around the globe
• Tens of thousands of hypervisors
• Over 350,000 Cores, Over 1.2 Petabytes of RAM
• Hundreds of thousands of virtual machines
• Several hundred on-metal instances
• Hundreds of thousands of virtual switch ports
6. Concept of Nova Cells to
scale regions to 1,000 of nodes
Tempest: the initial QA test
framework for OpenStack
OpenStack Ansible
deployment project
Magnum: the container
management system
Rewriting the Swift
object server in Go to Meet
hyper-scale demands
Barbican: the key
management service
KEY COMMUNITY
CONTRIBUTIONS
TO OPENSTACK
7. RACKSPACE’S
LEADERSHIP
• Freely share lessons learned
• Contribute code and ideas to the OpenStack
project
• Open source tools based on what we use to
operate our clouds
8. OPENSTACK INNOVATION
CENTER (OSIC)
THREE PILLARS
1. Train the Next Generation of OpenStack Contributors
2. Contribute to the removal of Enterprise barriers to OpenStack
adoption
3. Provide an avenue for operational scale testing to the OpenStack
community
10. • Before OpenStack, there was Slicehost
• Scaling limits led to OpenStack
• Xen is Slicehost’s legacy in the Rackspace
Public Cloud
• 10’s of thousands of existing customers meant
starting at scale
• Private Cloud started with clean sheet of paper
ORIGIN STORY
11. RACKSPACE’S
APPROACH
• Continuously upgrade our public cloud
– Deploy upstream OpenStack code
– Patch regularly
• Only use projects stable enough to run in production at scale
• Don’t reinvent the wheel
• Change code in production to meet scale requirements
– Certain bugs we only find in production
– Contribute back upstream when appropriate
• Move ahead of community when necessary
– Create service with internal software
– Contribute code and lessons learned to project
– Switch to project code when ready
13. • Why Cells?
– Scaling – DB & RabbitMQ,
– Reduce failure impact– Broadcast domains/ Nova
– Multiple compute flavors – SSD
– Multiple hardware types
• How we use Cells
– ~100 hosts per cell – scaling/failure impact
– Multiple cells per region – Failure impact
– Group same flavor types
– Group servers from same vendor – Live migration
• Takeaways
– Use cells from day 1
– Plan for scale
PARTITION
YOUR CLOUD
14. ABSTRACT YOUR
CONTROL PLANE
• iNova- Ancestor to TripleO
– Seed servers in each region
– Seed servers & Cells runs on VMs
– Easy to deploy, tear down, redeploy services
– React to issues quickly - Spikes
• Virtualized compute nodes
– Nova compute runs as VM on compute node
– Limits impact of compute node failure
– Reboot compute node but not hypervisor
– Security isolation
• Takeaways
– Explore TripleO – Red Hat OpenStack
– Containerize your control plane – OSA
– Protect your control plane – Use HA
15. AUTOMATE
EVERYTHING
• Operator error is more common than software
failure
• Automation = Making time
• OpenStack Ansible
– Encodes recommended practices
– Rackspace Private Cloud RA
– Highly customizable
– Great community support
• Takeaways
– Automation starts day 1
– Pick an appropriate tool and run with it
16. USE FLEET
MANAGEMENT
• Failure is inevitable at scale
• We created tools to manage the fleet
– Auditor – Monitor for rules compliance
– Resolver – Automate tasks based on events
– Use Cases
• Upgrades and patches – Xen vulnerability live patch
• Maintenance – Live migration
• Takeaways
– Focus on service availability over component
availability
– You can’t manage what you don’t know
– Leverage live migration
– Check out Project Craton
17. • Rackspace Public Cloud
https://www.rackspace.com/cloud
• Rackspace Private Cloud
https://www.rackspace.com/cloud/private/openstacksolutions
• OpenStack Innovation Center
https://osic.org/
• Rackspace Blog
http://blog.rackspace.com/
• Rackspace Videos at OpenStack Summits
https://www.youtube.com/user/OpenStackFoundation/playlists
• Project Craton
https://github.com/openstack/craton
RESOURCES