congress updates - liberty edition

Report

Tags:

Post on 30-Jul-2015

171 Views

Category:

Software

0 Downloads

Preview:

Click to see full reader

TRANSCRIPT

OpenStack CongressGovernance as a ServiceKilo/Liberty Update

Tim HinrichsTimothy.L.Hinrichs@gmail.com

June 22, 2015

Overview

An Open Policy Framework for the Datacenter

Congress

Policy

Network Compute Storage Others

Neutron Nova Cinder Swift …

Design Goals

1. Any Service

2. Any Policy

Example

Policy:

Every network attached to a VM must be a public network or a private network owned by someone in the same group as the VM owner.

Cloud Services:– Nova: a manager for VMs– Neutron: a manager for virtual networks– Keystone: manager for group-membership

Capabilities• Monitoring. Identify policy violations

• Enforcement. Take action to eliminate policy violations– Proactive: prevent violations

– Reactive: correct violations

– Delegation: divvy problem among other policy engines

• Audit. Chronicle history pertinent to policy

Kilo status• Level 3 in the big tent

• Ground work: RESTful API, Command-line interface, GUI (Horizon), Keystone integration, devstack integration, tempest tests

• Policy engine: Datalog with negation but without recursion

• Integrated Services: Ceilometer, Cinder, CloudFoundry, Glance, Ironic, Keystone, Murano, Neutron, Nova, Plexxi, Swift, vCenter

• Capabilities: Monitoring, proactive/reactive enforcement

https://github.com/openstack/governance/blob/master/resolutions/20141202-project-structure-reform-spec.rst

Liberty: Reactive Enforcement

Congress

1. Change requested

Nova

2. Identify violation

3. Execute actions

KiloPolicy statements likeif <conditions> then <action>

Liberty● Provide admin controls to disable/limit action execution● Add API that lists the available actions● Enlarge number of services capable of executing actions

Kilo/Liberty: High Availability Architecture

Congress Congress Congress

Load Balancer

Shared database

Message bus

Congress

Liberty: Scale Out Architecture

Neutron Nova Cinder Swift

Nova DriverNeutron Driver Cinder Driver Swift Driver

Policy Engine

Liberty: Delegation with Keystone?

Congress

Policy

Neutron Nova Cinder Swift …

Contact Information

Wikihttps://wiki.openstack.org/wiki/Congress

IRC#congress

IRC MeetingsTuesdays @ 10a Pacific = 1700 UTC on #openstack-meeting-3

https://wiki.openstack.org/wiki/Congress

top related

update on laws passed during the 14th & 15th congress ......
Documents
marlboro high school weekly updates senior prom class of...
Documents
asco congress highlights: updates on ...its.jnj.com an email...
Documents
~ht qi;oustitutiou. - liberty...
Documents
west liberty university program · pdf filewest liberty...
Documents
liberty or not liberty? marks that confuse
Documents
summer 2018 religious liberty updates from united states
Documents
give him 'liberty' - liberty laundry
Documents
statue of liberty liberty island ellis island
Documents
es_5_7_pom_raci · web view5.7 updates including figure 1...
Documents
benjamin rush founding father member of sons of liberty...
Documents
liberty powder metals - liberty house group
Documents
update on laws passed during the 14th & …...
Documents
searchlight updates - liberty edition
Software
the company you keep - part ii updates, practical issues &...
Documents
key takeaways from china's 19th national congress, bcm...
Business
liberty coin service collecting liberty...
Documents
multiple myeloma updates from the 2015 asco annual … ·...
Documents
cinder updates - liberty edition
Software
give me liberty · 1793 eli whitney invents cotton gin 1806...
Documents