openstack-academia team mailing list archive

[Andrew Weiss <weissa@xxxxxxxxxx>]

Hi David,

I'll certainly take a look into the security APIs, however, my focus areas
are not in development. I am looking to take the overall concepts of
security and drill down into individual topics such impacts on performance,
business operations, regulatory compliance, etc.  My results could then be
used by the development community to improve upon the OpenStack Projects. As
others have mentioned, I have yet to create a more detailed proposal of
research areas, but am working on one at the moment.

Thanks,


Andrew Weiss
weissa@xxxxxxxxxx <mailto:weissa@xxxxxxxxxx>
LinkedIn | http://www.linkedin.com/in/weissa
<http://www.linkedin.com/in/weissa>

From:  David Chadwick <d.w.chadwick@xxxxxxxxxx>
Organization:  University of Kent
Date:  Wed, 25 Jan 2012 06:25:55 +0000
To:  Andrew Weiss <weissa@xxxxxxxxxx>
Cc:  OpenStack Academic Initiative <openstack-academia@xxxxxxxxxxxxxxxxxxx>
Subject:  Re: [Openstack-academia] New Research Initiative

Hi Andrew

One of the things you might wish to look at, is applying a set of
security APIs that we originally developed for Eucalyptus/Amazon's S3,
to OpenStack. The APIs are described in a programming language
independent way, as well as being implemented and specified in PHP. To
apply them to OpenStack will require them to be rewritten in Python.

The APIs provide federated access to clouds, as well as attribute based
access controls and delegation of rights to anyone from anywhere.

You can experiment with our system here

https://authz.tas3.kent.ac.uk/proxyS3/home.php

and find the documentation and software on the publicly accessible pages.

If you need any help in understanding or implementing the security APIs
please let me know and I will be glad to help.

regards

David


On 25/01/2012 04:57, Andrew Weiss wrote:
>  Hey everyone,
> 
>  I wanted to introduce myself to this group. My name is Andrew Weiss and
>  I am a senior undergraduate student in the Computer&  Information
>  Technology Department at Purdue University.  Throughout the course of
>  this semester, I will be conducting research in cloud computing with
>  focus areas that include: security, scalability, and business process
>  enhancement. I recently contacted Stefano about using OpenStack as the
>  primary tool for our cloud computing research and he mentioned this
>  academic group.
> 
>  My goal with this project is to explore the advantages and disadvantages
>  of deploying an open source private cloud in an enterprise environment.
>  The degree I am pursuing is geared towards IT engineering in regards to
>  the maintenance, support, and implementation of enterprise technologies.
>  If anyone has any areas in particular that relate to this project that
>  they would like me to also look into, I would certainly be interested.
>  Please contact me with more information and whether or not you are
>  interested in following along with our project's progress.
> 
>  Andrew

-- 

*****************************************************************
David W. Chadwick, BSc PhD
Professor of Information Systems Security
School of Computing, University of Kent, Canterbury, CT2 7NF
Skype Name: davidwchadwick
Tel: +44 1227 82 3221
Fax +44 1227 762 811
Mobile: +44 77 96 44 7184
Email: D.W.Chadwick@xxxxxxxxxx
Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html
Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html
Entrust key validation string: MLJ9-DU5T-HV8J
PGP Key ID is 0xBC238DE5

*****************************************************************