Access to the cloud infrastructure is secured and encrypted.
Tenant networks are isolated and encrypted.
The user has full control over cryptographic keys used.
User data stored within the cloud is fully encrypted and only accessible to the user.
Images can be encrypted and additionally secured with a digital signature.
SecuStack provides mechanisms and consultation offers for securing your underlying infrastructure.
OpenStack is the de facto standard for cloud infrastructures based on Open Source. An OpenStack infrastructure can reach a high level of complexity. Maintaining the life cycle of such an infrastructure as well as ensuring regular updates to its components present additional challenges to providers. Furthermore, a vanilla OpenStack setup - especially concerning highly security-critical infrastructures - provides only limited cryptographic protection of cloud ressources. Both disadvantages that apply to a regular OpenStack distribution are addressed by SecuStack, which develops a modular solution. SecuStack is composed of OpenStack code extensions as well as an OpenStack infrastructure management solution:
Due to the separation into SecuStack Core and SecuStack Infra, the adaptation into different environments is possible: SecuStack Core can be deployed as a security enhancement on top of existing OpenStack distributions. SecuStack Infra provides complete automation for the installation and maintenance of OpenStack infrastructures. In conjunction both parts form an independent OpenStack distribution.
SecuStack is a security-hardened Cloud infrastructure solution based on OpenStack. It comes with various features securing the data provided by users to the Cloud. Furthermore, it offers holistic cryptographic tenant seperation.
SecuStack is an extension of the vanilla OpenStack code base. It is built upon generic OpenStack code and incorporates security enhancements and acts as a drop-in replacement for standard OpenStack components.
SecuStack may be used in any environment with security-critical processes and data. Examples are Cloud infrastructures in the health care domain and Cloud infrastructures for public authorities as well as Cloud infrastructures for Smart Home or Smart City applications.
Yes, SecuStack may be applied to existing OpenStack infrastructures to add unique security features such as a cryptographic separation of tenants. Furthermore, we offer consultancy services to evaluate and improve the security of existing OpenStack infrastructures.
CTO (secunet AG)
COO (Cloud&Heat Technologies)
The companies secunet and Cloud&Heat Technologies are the driving forces behind the development of SecuStack. The two partners combine their longstanding expertise in the fields of security solutions and the operation of OpenStack.