RISER Project Announces Cloud Workshop to be held on November 8th, 2023

 

The RISER Project is excited to announce its upcoming Cloud Workshop, set to take place on Wednesday, November 8th at 14:00 (CET). This is an online event focusing on the topics of cloud infrastructure management, security and confidential computing. Whether you’re new to cloud computing or a seasoned pro, this workshop offers something for everyone. The schedule for the workshop is as follows:

14:00-14:10: Welcome and introduction

Moderator: Peter Gray – Project Manager, CloudSigma

 14:10-14:40: The case for intent-driven Orchestration

Speaker: Thijs Metsch, Senior Research Engineer, Intel Labs

In today’s orchestration and management stacks we rely on a declarative resource asks to make sure performance targets are met. But with a Serverless mindset in place, there should no longer be a need to define resource requests or any other kinds of information. Just developed your app or function and run anywhere. This is where we want to the shift orchestration towards a intent-driven model, in which a user declares their intents with the associated SLOs. Based on these performance targets the orchestration and management stacks will do the rest. This is a shift in how we do orchestration and SLO management, away from a monitoring & alerting way of looking SLOs, towards a way of using SLOs to manage the systems.

Download slides

 14:40-15:00: Infrastructure as Code (IaC)

Speaker: Pavel Sorokin – Senior Softweare Developer, CloudSigma

An introduction to Infrastructure as Code (IaC) as an approach to managing and provisioning infrastructure in a cloud environment through code and automation rather than manual processes. We will demonstrate how Terraform can be used to define and provision infrastructure in a declarative and automated way. In this case, the CloudSigma Terraform provider will be used to manage and automate the creation, configuration, and management of various cloud resources in the CloudSigma cloud using a single, consistent language.

Download slides

 15:00-15:30: Serverless Computing – A Security Perspective

Speaker: Eduard Marin Fabregas – Research Scientist, Telefonica

In this talk, we will review the current serverless architectures, abstract and categorize their founding principles, and provide an in-depth security analysis. In particular, we will show the security shortcomings of the analyzed serverless architectural paradigms; point to possible countermeasures; and highlight several research directions for practitioners, Industry, and Academia. 

Download slides

 15:30-16:00: New paradigm of cloud security through end-to-end security with confidential computing 

Speaker: Nicolae Paladi – CEO and Co-founder of CanaryBit | Affiliated Researcher at Lund University

The cloud computing model has been around for almost 20 years. Today, growing cybersecurity threats, new privacy regulations and advances in hardware platform security encourage us to revisit cloud security from the ground up. Confidential computing is an emerging technology that allows us to protect data in use by deploying workloads in hardware-based, attested, Trusted Execution Environments. In this talk, I will introduce confidential computing technology, explain its security guarantees and limitations, and shed some light on industry adoption. I will also present how CanaryBit uses its Confidential Cloud platform to address complex data-sharing scenarios for businesses and the public sector in the EU (cases from real life).

Download slides

 16:00-16:30: Confidential Computing: The Perspective of RISC-V 

Speaker: Nick Kossifidis, Principal Research Engineer, FORTH

In this talk, we will explore the various mechanisms that are being worked on within the RISC-V Technical Committee and the Security Horizontal Committee regarding the establishment of Trusted Execution Environments, Trusted VMs, and Trusted devices. We’ll
provide an overview of relevant specifications, such as the AP-TEE and AP-TEE-IO,
ePMP/sPMP/IOPMP, IOMMU and Smmtt.

Download slides

 16:30-16:50: Cloud Application Security – Secure SDLC

Speaker: Pavel Sorokin (Senior Software Developer / CloudSigma)

This session is broad in scope, promoting the Secure Software Development Lifecycle (Secure SDLC) as a systematic and structured approach to designing, building, testing, and deploying software applications with security considerations integrated throughout the entire development process. The focus is on using Secure SDLC to identify and mitigate security vulnerabilities and weaknesses in software early in the development lifecycle, reducing the risk of security breaches and data exposures.

Download slides

16:50-17:30: Panel Discussion – Q&A

The floor is open for questions to the lecturers.

As the cloud continues to shape the future of technology, staying up-to-date with the latest trends is essential. The Riser Project Cloud Workshop is your chance to gain a competitive edge in this rapidly evolving field.

Attendance is limited, so early registration is encouraged. Don’t miss the opportunity to gain a deeper understanding of cloud computing and how it can transform your business. Join us on November 8th for a day of discovery and learning. Please register here

Categories:

Tagged:

Comments are closed