OpenStack Compute (nova)

Improvements in security of nova implementation

Registered by Ray Hookway on 2011-09-22

Make several changes to improve the security of the Nova implementation: 1. Enable HTTPS on the Nova API server, 2. Sign messages between Nova components, 3. Encrypt sensitive user data stored in the database, 4. Implement component type specific access privileges to the database.

Read the full specification

Blueprint information

Status:: Complete

Approver:: Vish Ishaya

Priority:: Undefined

Drafter:: Ray Hookway

Direction:: Approved

Assignee:: Nova Security Improvements Team

Definition:: Obsolete

Series goal:: None

Implementation:: Unknown

Milestone target:: None

Completed by: Vish Ishaya on 2012-04-26

Related branches

Related bugs

Sprints

Whiteboard

This is a blueprint for planning of individual steps. When the steps are defined, new blueprints can be created for each change. --Vish

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.

This blueprint contains Public information

Everyone can see this information.

Subscribers

Abu Shohel Ahmed

Belmiro Moreira

Duncan Thomas

Paul Carlton