Chlorine

•Download as ODP, PDF•

0 likes•210 views

Benoy Antony

Detect hidden sensitive data in Hadoop Clusters

Data & Analytics

DataApps Corporation 1
Discover Sensitive Data In Hadoop
using
Chlorine
Benoy Antony

DataApps Corporation 2
About me
●
Focus on securing Hadoop clusters
●
Apache Hadoop Committer
–
Contributed features to security and HDFS
●
Founder of DataApps - http://dataApps.io

DataApps Corporation 3
Problem
●
Users store many kinds of data in HDFS
●
There could be sensitive data stored
without sufficient protection
●
Results in non-compliance

DataApps Corporation 4
Solution
●
Scan the data against patterns matching
different items like email, credit card
●
Analyze the results for accuracy
●
If sensitive data identified, take action

DataApps Corporation 5
Protecting sensitive Data
–
Restrict access to the data using permissions
and extended ACLS
–
Encrypt the data
●
HDFS Encryption for HDFS files
●
Column level encryption for Hive columns
–
Mask the values

DataApps Corporation 6
Introducing Chlorine
●
Scans HDFS directories against patterns
to detect sensitive data elements.
●
Reports sensitive elements detected.

DataApps Corporation 7
Data Patterns
●
Patterns are expressed a regular
expressions
●
Supports common patterns like email,
credit card, SSN etc.
●
Users can add new patterns

DataApps Corporation 8
File Formats
●
Text Files
●
All file formats supported via Hive
including Sequence, Avro, Orc, Parquet.
●
Uses Hive Schema to parse input (if
available)

DataApps Corporation 9
Scanning
●
Deep Scan vs Quick Scan
●
Incremental scans
●
Scheduled Scans

DataApps Corporation 10
Results
●
Collects all sensitive elements
●
Provides a preview of detected elements
by type.
●
Can download the full list with location
pointers.

DataApps Corporation 11
Compatibility
●
Hadoop Versions
–
2.3+
●
Hive Versions
–
0.12 +
●
Uses the Hadoop and Hive clients
installed on the machine

DataApps Corporation 12
Security
●
Authentication
–
Kerberos, Custom
●
Authorization
–
ACLs to access, administer and view/edit
scans
●
Auditing
–
Records all actions

DataApps Corporation 13
Protection of Scans and Results
●
Can enable usage of impersonation to
scan files as the user itself
●
Scan results stored on HDFS are
readable by Chlorine user only
●
Users can view their scans and control
access to the scans and results

DataApps Corporation 15
On line Demo
●
Visit http://dataApps.io to scan a Hadoop
Cluster using Chlorine
●
Setup Scans against a Hadoop Cluster
preloaded with data, View results
●
Explore Chlorine administrative features

DataApps Corporation 16
Getting Chlorine
●
Download from http://dataApps.io
●
Can scan up to 10 Terabytes for free.

What's hot

XDC demo: CTAEOSC-hub project

Discover Introduction to REDCapSTARSurg

The new CIARD RING, a machine-readable directory of datasets for agricultureValeria Pesce

NoSQL Databases, Not just a Buzzword Haitham El-Ghareeb

OR2019 DSpace 7: Open for integration4Science

Or2019 DSpace 7 Enhanced submission & workflow4Science

ORCID for DSpaceBram Luyten

Collecting and analyzing sensor data with hadoop or other no sql databasesMatteo Redaelli

DSpace-CRIS & OpenAIRE4Science

ElasticsearchDivij Sehgal

Concept scapminh pham

Cloudian HyperStore Operating EnvironmentCloudian

Open source log analyticsVinod Nayal

Collecting and using funding data in your publicationsCrossref

Extending DSpace 7: DSpace-CRIS and DSpace-GLAM for empowered repositories an...4Science

News about DSpace-CRIS Anwendertreffen 20204Science

RSI at the HDF & HDF-EOS Workshop VIThe HDF-EOS Tools and Information Center

REST APIs for the Internet of ThingsMichael Koster

ICIC 2017: New product presentations CASDr. Haxel Consult

The CIARD RING, a global directory of datasets for agriculture, by Valeria P...CIARD Movement

What's hot (20)

XDC demo: CTA

Discover Introduction to REDCap

The new CIARD RING, a machine-readable directory of datasets for agriculture

NoSQL Databases, Not just a Buzzword

OR2019 DSpace 7: Open for integration

Or2019 DSpace 7 Enhanced submission & workflow

ORCID for DSpace

Collecting and analyzing sensor data with hadoop or other no sql databases

DSpace-CRIS & OpenAIRE

Elasticsearch

Concept scap

Cloudian HyperStore Operating Environment

Open source log analytics

Collecting and using funding data in your publications

Extending DSpace 7: DSpace-CRIS and DSpace-GLAM for empowered repositories an...

News about DSpace-CRIS Anwendertreffen 2020

RSI at the HDF & HDF-EOS Workshop VI

REST APIs for the Internet of Things

ICIC 2017: New product presentations CAS

The CIARD RING, a global directory of datasets for agriculture, by Valeria P...

Similar to Chlorine

Big Data and Hadoop IntroductionDzung Nguyen

Big data and Hadoop introductionDzung Nguyen

Teradata Loom Introductory Presentationmlang222

Combat Cyber Threats with Cloudera Impala & Apache HadoopCloudera, Inc.

Hadoop Security Features That make your risk officer happyDataWorks Summit

Hadoop Security Features that make your risk officer happyAnurag Shrivastava

Hadoop-2022.pptxMurindanyiSudi1

Big data processing using hadoop poster presentationAmrut Patil

Securing Hadoop in an Enterprise Context (v2)Hellmar Becker

Securing Hadoop in an Enterprise ContextDataWorks Summit/Hadoop Summit

Hadoop architecture-tutorialvinayiqbusiness

Case Study: Implementing Hadoop and Elastic Map Reduce on Scale-out Object S...Cloudian

Using hadoop for enterprise data managementEstuate, Inc.

Hadoop project design and a usecasesudhakara st

大数据数据治理及数据安全Jianwei Li

Introduction to Hadoop AdministrationRamesh Pabba - seeking new projects

paperAnkeeta Battalwar

R Hadoop integrationDzung Nguyen

Session 01 - Into to HadoopAnandMHadoop

Minerva: Drill Storage Plugin for IPFSBowenDing4

Similar to Chlorine (20)

Big Data and Hadoop Introduction

Big data and Hadoop introduction

Teradata Loom Introductory Presentation

Combat Cyber Threats with Cloudera Impala & Apache Hadoop

Hadoop Security Features That make your risk officer happy

Hadoop Security Features that make your risk officer happy

Hadoop-2022.pptx

Big data processing using hadoop poster presentation

Securing Hadoop in an Enterprise Context (v2)

Securing Hadoop in an Enterprise Context

Hadoop architecture-tutorial

Case Study: Implementing Hadoop and Elastic Map Reduce on Scale-out Object S...

Using hadoop for enterprise data management

Hadoop project design and a usecase

大数据数据治理及数据安全

Introduction to Hadoop Administration

paper

R Hadoop integration

Session 01 - Into to Hadoop

Minerva: Drill Storage Plugin for IPFS

Recently uploaded

Kantar AI Summit- Under Embargo till Wednesday, 24th April 2024, 4 PM, IST.pdfSocial Samosa

꧁❤ Greater Noida Call Girls Delhi ❤꧂ 9711199171 ☎️ Hard And Sexy Vip Callshivangimorya083

办理学位证纽约大学毕业证(NYU毕业证书）原版一比一fhwihughh

VIP High Profile Call Girls Amravati Aarushi 8250192130 Independent Escort Se...Suhani Kapoor

办理(Vancouver毕业证书)加拿大温哥华岛大学毕业证成绩单原版一比一F La

Industrialised data - the key to AI success.pdfLars Albertsson

Beautiful Sapna Vip Call Girls Hauz Khas 9711199012 Call /Whatsappssapnasaifi408

Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝soniya singh

Data Science Jobs and Salaries Analysis.pptxFurkanTasci3

Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...ThinkInnovation

High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...soniya singh

DBA Basics: Getting Started with Performance Tuning.pdfJohn Sterrett

VIP Call Girls Service Miyapur Hyderabad Call +91-8250192130Suhani Kapoor

RadioAdProWritingCinderellabyButleri.pdfgstagge

Customer Service Analytics - Make Sense of All Your Data.pptxEmmanuel Dauda

代办国外大学文凭《原版美国UCLA文凭证书》加州大学洛杉矶分校毕业证制作成绩单修改atducpo

{Pooja: 9892124323 } Call Girl in Mumbai | Jas Kaur Rate 4500 Free Hotel Del...Pooja Nehwal

PKS-TGC-1084-630 - Stage 1 Proposal.pptxPramod Kumar Srivastava

INTERNSHIP ON PURBASHA COMPOSITE TEX LTDRafezzaman

9711147426✨Call In girls Gurgaon Sector 31. SCO 25 escort servicejennyeacort

Recently uploaded (20)

Kantar AI Summit- Under Embargo till Wednesday, 24th April 2024, 4 PM, IST.pdf

꧁❤ Greater Noida Call Girls Delhi ❤꧂ 9711199171 ☎️ Hard And Sexy Vip Call

办理学位证纽约大学毕业证(NYU毕业证书）原版一比一

VIP High Profile Call Girls Amravati Aarushi 8250192130 Independent Escort Se...

办理(Vancouver毕业证书)加拿大温哥华岛大学毕业证成绩单原版一比一

Industrialised data - the key to AI success.pdf

Beautiful Sapna Vip Call Girls Hauz Khas 9711199012 Call /Whatsapps

Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝

Data Science Jobs and Salaries Analysis.pptx

Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...

High Class Call Girls Noida Sector 39 Aarushi 🔝8264348440🔝 Independent Escort...

DBA Basics: Getting Started with Performance Tuning.pdf

VIP Call Girls Service Miyapur Hyderabad Call +91-8250192130

RadioAdProWritingCinderellabyButleri.pdf

Customer Service Analytics - Make Sense of All Your Data.pptx

代办国外大学文凭《原版美国UCLA文凭证书》加州大学洛杉矶分校毕业证制作成绩单修改

{Pooja: 9892124323 } Call Girl in Mumbai | Jas Kaur Rate 4500 Free Hotel Del...

PKS-TGC-1084-630 - Stage 1 Proposal.pptx

INTERNSHIP ON PURBASHA COMPOSITE TEX LTD

9711147426✨Call In girls Gurgaon Sector 31. SCO 25 escort service

Chlorine

1. DataApps Corporation 1 Discover Sensitive Data In Hadoop using Chlorine Benoy Antony

2. DataApps Corporation 2 About me ● Focus on securing Hadoop clusters ● Apache Hadoop Committer – Contributed features to security and HDFS ● Founder of DataApps - http://dataApps.io

3. DataApps Corporation 3 Problem ● Users store many kinds of data in HDFS ● There could be sensitive data stored without sufficient protection ● Results in non-compliance

4. DataApps Corporation 4 Solution ● Scan the data against patterns matching different items like email, credit card ● Analyze the results for accuracy ● If sensitive data identified, take action

5. DataApps Corporation 5 Protecting sensitive Data – Restrict access to the data using permissions and extended ACLS – Encrypt the data ● HDFS Encryption for HDFS files ● Column level encryption for Hive columns – Mask the values

6. DataApps Corporation 6 Introducing Chlorine ● Scans HDFS directories against patterns to detect sensitive data elements. ● Reports sensitive elements detected.

7. DataApps Corporation 7 Data Patterns ● Patterns are expressed a regular expressions ● Supports common patterns like email, credit card, SSN etc. ● Users can add new patterns

8. DataApps Corporation 8 File Formats ● Text Files ● All file formats supported via Hive including Sequence, Avro, Orc, Parquet. ● Uses Hive Schema to parse input (if available)

9. DataApps Corporation 9 Scanning ● Deep Scan vs Quick Scan ● Incremental scans ● Scheduled Scans

10. DataApps Corporation 10 Results ● Collects all sensitive elements ● Provides a preview of detected elements by type. ● Can download the full list with location pointers.

11. DataApps Corporation 11 Compatibility ● Hadoop Versions – 2.3+ ● Hive Versions – 0.12 + ● Uses the Hadoop and Hive clients installed on the machine

12. DataApps Corporation 12 Security ● Authentication – Kerberos, Custom ● Authorization – ACLs to access, administer and view/edit scans ● Auditing – Records all actions

13. DataApps Corporation 13 Protection of Scans and Results ● Can enable usage of impersonation to scan files as the user itself ● Scan results stored on HDFS are readable by Chlorine user only ● Users can view their scans and control access to the scans and results

14. DataApps Corporation 14 Demo

15. DataApps Corporation 15 On line Demo ● Visit http://dataApps.io to scan a Hadoop Cluster using Chlorine ● Setup Scans against a Hadoop Cluster preloaded with data, View results ● Explore Chlorine administrative features

16. DataApps Corporation 16 Getting Chlorine ● Download from http://dataApps.io ● Can scan up to 10 Terabytes for free.

17. DataApps Corporation 17 Questions ?

Chlorine

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Chlorine

Similar to Chlorine (20)

Recently uploaded

Recently uploaded (20)

Chlorine