RISER Project Announces Cloud Workshop to be held on November 8th, 2023
The RISER Project is excited to announce its upcoming Cloud Workshop, set to take place on Wednesday, November 8th at 14:00 (CET). This is an online event focusing on the topics of cloud infrastructure management, security and confidential computing. Whether you’re new to cloud computing or a seasoned pro, this workshop offers something for everyone. The schedule for the workshop is as follows:
14:00-14:10: Welcome and introduction
Moderator: Peter Gray – Project Manager, CloudSigma
14:10-14:40: The case for intent-driven Orchestration
Speaker: Thijs Metsch, Senior Research Engineer, Intel Labs
In today’s orchestration and management stacks we rely on a declarative resource asks to make sure performance targets are met. But with a Serverless mindset in place, there should no longer be a need to define resource requests or any other kinds of information. Just developed your app or function and run anywhere. This is where we want to the shift orchestration towards a intent-driven model, in which a user declares their intents with the associated SLOs. Based on these performance targets the orchestration and management stacks will do the rest. This is a shift in how we do orchestration and SLO management, away from a monitoring & alerting way of looking SLOs, towards a way of using SLOs to manage the systems.
14:40-15:00: Infrastructure as Code (IaC)
Speaker: Pavel Sorokin – Senior Softweare Developer, CloudSigma
An introduction to Infrastructure as Code (IaC) as an approach to managing and provisioning infrastructure in a cloud environment through code and automation rather than manual processes. We will demonstrate how Terraform can be used to define and provision infrastructure in a declarative and automated way. In this case, the CloudSigma Terraform provider will be used to manage and automate the creation, configuration, and management of various cloud resources in the CloudSigma cloud using a single, consistent language.
15:00-15:30: Serverless Computing – A Security Perspective
Speaker: Eduard Marin Fabregas – Research Scientist, Telefonica
In this talk, we will review the current serverless architectures, abstract and categorize their founding principles, and provide an in-depth security analysis. In particular, we will show the security shortcomings of the analyzed serverless architectural paradigms; point to possible countermeasures; and highlight several research directions for practitioners, Industry, and Academia.
15:30-16:00: New paradigm of cloud security through end-to-end security with confidential computing
Speaker: Nicolae Paladi – CEO and Co-founder of CanaryBit | Affiliated Researcher at Lund University
The cloud computing model has been around for almost 20 years. Today, growing cybersecurity threats, new privacy regulations and advances in hardware platform security encourage us to revisit cloud security from the ground up. Confidential computing is an emerging technology that allows us to protect data in use by deploying workloads in hardware-based, attested, Trusted Execution Environments. In this talk, I will introduce confidential computing technology, explain its security guarantees and limitations, and shed some light on industry adoption. I will also present how CanaryBit uses its Confidential Cloud platform to address complex data-sharing scenarios for businesses and the public sector in the EU (cases from real life).
16:00-16:30: Confidential Computing: The Perspective of RISC-V
Speaker: Nick Kossifidis, Principal Research Engineer, FORTH
In this talk, we will explore the various mechanisms that are being worked on within the RISC-V Technical Committee and the Security Horizontal Committee regarding the establishment of Trusted Execution Environments, Trusted VMs, and Trusted devices. We’ll
provide an overview of relevant specifications, such as the AP-TEE and AP-TEE-IO,
ePMP/sPMP/IOPMP, IOMMU and Smmtt.
16:30-16:50: Cloud Application Security – Secure SDLC
Speaker: Pavel Sorokin (Senior Software Developer / CloudSigma)
This session is broad in scope, promoting the Secure Software Development Lifecycle (Secure SDLC) as a systematic and structured approach to designing, building, testing, and deploying software applications with security considerations integrated throughout the entire development process. The focus is on using Secure SDLC to identify and mitigate security vulnerabilities and weaknesses in software early in the development lifecycle, reducing the risk of security breaches and data exposures.
16:50-17:30: Panel Discussion – Q&A
The floor is open for questions to the lecturers.
As the cloud continues to shape the future of technology, staying up-to-date with the latest trends is essential. The Riser Project Cloud Workshop is your chance to gain a competitive edge in this rapidly evolving field.
Attendance is limited, so early registration is encouraged. Don’t miss the opportunity to gain a deeper understanding of cloud computing and how it can transform your business. Join us on November 8th for a day of discovery and learning. Please register here.
Comments are closed