PORTLAND. Security is top of mind when it comes to the cloud, that’s no surprise to anyone.
At the OpenStack Summit in Portland today, Rackspace developer Jarret Raim presented the CloudKeep project for OpenStack
The basic idea is to create a secure service for sharing secrets (the ‘keys’ to security). CloudKeep has four pieces:
Babrican which is the main REST API that provides provisioning, auditing and reporting.
Postern – is the agent that runs on the box and provides access to the keys.
Palisade is the web UI –
Keep is a command line client
The agent in turn works with the OpenStack Keystone service for identity, pairing and policy management.
Sure makes a lot of sense to me and the CloudKeep could well be the missing piece in the OpenStack security puzzle (when and if it matures).
The project is currently available at:
github.com/cloudkeep
The current code is not yet production ready but it does show promise.
Sean Michael Kerner is a senior editor at InternetNews.com, the news service of the IT Business Edge Network, the network for technology professionals. Follow him on Twitter @TechJournalist.
