Wednesday, December 5 • 14:00 - 14:30
Cloud Security: Be Careful What You Wish For - James Bottomley, Distinguished Engineer, IBM

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Consider first what perfect security is: for an internet connected
computer you fear may be compromised into revealing its secrets pulling
out the network cable and powering it off makes it impregnable against
remote hackers; it's perfectly secure but also perfectly useless.  The
point in this facile example is that security is not an isolated
property to be sought but a tradeoff to be made among competing
priorities and for the rest of this talk we'll discuss how that
tradeoff is made and why people are often encouraged for political
reasons to make it wrongly.

The first example we'll explore is containerisation.  Everyone likely
knows about devops and immutable infrastructure, but few people
appreciate that containers actually significantly shifted the
boundaries of security responsibility in a way that makes it much
easeir for cloud tenants to secure their services.

Finally we'll look at snake oil in security ... like the patent
medicine salesmen of old, many claims are made, but few are
scientifically proven.  However, recent advances in security research
have changed this and we now have ways of accurately measuring what was
once dangerously heuristic and thanks to these new measurements we can
reveal a few surprising results.

avatar for James Bottomley

James Bottomley

Distinguished Engineer, IBM
James Bottomley is a Distinguished Engineer at IBM Research where he works on Cloud and Container technology. He is also Linux Kernel maintainer of the SCSI subsystem. He has been a Director on the Board | of the Linux Foundation and Chair of its Technical Advisory Board. He went... Read More →

Wednesday December 5, 2018 14:00 - 14:30