Cloud Security Training

Definition

Cloud and virtualization provide the agility and efficiency to instantly deploy new services and expand business infrastructures. Unfortunately, the lack of physical control poses new problems around cloud security. This course addresses vulnerabilities and risks related to cloud computing. The security mechanisms in the Cloud and the principles to be implemented (basic configuration of security) will also be treated.

Goals

• Learn the main cloud application typologies,
• Master the main principles of security.
• Master the best practices learned for setting up and administering future secure cloud applications.

Introduction

• Cloud Computing Services and Solutions (SaaS, PaaS, IaaS)
• Business Clouds Amazon AWS, Google Cloud and Microsoft Azure
• Cloud Stacks and Comparison: OpenStack, CloudStack, OpenNebula, VMware, HyperV Amazon, Azure
• Virtualization in the Cloud
• Judicial aspects
• CVE / vulnerabilities of SDN Controllers: OpenDayLight

Security in the Cloud

• Security rules and secure architectures
• Taxonomy of network and system security attacks and some examples of attacks
• Risk Analysis in the Cloud
• Vulnerability lifecycle for cloud services
• Security services in the cloud (ABE, homomorphic cryptography, ...)

OpenStack Administration

• Keystone identity service
• Authentication methods
• Access control policy
• Token management
• Key management and storage 
• Security mechanisms for NoSQL storage
• Virtualized network operation and interaction with an SDN controller

Administrators and system and network engineers

This module is for anyone wishing to gain knowledge of cloud security and network virtualization. It requires general networking and computer security knowledge to make better use of it.