Loading…
ApacheCon EU 2016 has ended
ApacheCon Europe 2016
Click here to Register or for more information 

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Cloud [clear filter]
Wednesday, November 16
 

15:30

Next Generation Directory-Based User Management for Cloud Infrastructure - Shawn McKinney, Symas Corporation & Katarína Valaliková, Evolveum
(also in big data)

The IETF standard RFC2307 has long been a best-practice for storing security policies of unix machines across tcp/ip networks. It has a common data format so that a uniform security policy can be applied across every node in the network. The problem is keeping the security policy current. There needs to be a mediator to automatically keep events in sync. Access must be granted when new machines pop up without delay, and most importantly, removed, when no longer needed. At the same time rigid policies must be maintained about who can access a machine when, and for what purpose, or for that matter, who can grant that access, and under what conditions. Everything must also be backed up by a centralized audit trail. Here weÛªll present an approach for doing this using some open source software. There is a demo based on a hypothetical case study.

Speakers
avatar for Shawn McKinney

Shawn McKinney

Software Architect, Symas
Over twenty-five years as software developer and architect. Most of that time specializing in software security. Started an open source project called Fortress.
KV

Katarína Valaliková

Identity Architect, Evolveum



Wednesday November 16, 2016 15:30 - 16:20
Carmona