Videos provided by OpenStack Summit via OpenStack Foundation YouTube Channel
Today's corporate security groups are not staffed to handle the specialized skills needed to perform code analysis and security testing from OpenStack. This discussion will focus on three areas: 1. Who should be responsible for testing (hint: a specialized group of ninjas; 2. Automating API and Code testing w/demo; how this translates into better code in OpenStack.
There is a paradigm shift in how security testing is being conducted by software companies. The benefits of moving security testing away from an info-security" perspective will make security testing a repeatable process that is streamlined, more efficient, and more secure in OpenStack environment.