I’ve been asked to provide a brief security analysis of the OpenStack open source cloud computing platform and whether our enterprise should pursue it as the basis for our cloud infrastructure build-out. My initial assessment is that, like with Apache and Linux, the open nature of the platform allows security flaws to be found and fixed quickly, which helps decrease the likelihood of exploits. Do you agree? What other OpenStack security points (pro and con) are worth considering?