The document discusses big data and cloud computing. It provides an overview of big data sources and how data is aggregated and processed. It also discusses how cloud platforms can be leveraged for big data solutions, including infrastructure as a service (IaaS) and platform as a service (PaaS) offerings. Security considerations are also covered, such as identity and access management, electronic discovery, and privacy regulations. The presentation emphasizes that big data in the cloud requires secure implementation with access controls, logging, and separation of duties.

1. The Big Data Cloud:
Are You Ready for the Zettabyte?
Steven C. Markey, MSIS, PMP, CISSP, CIPP, CISM, CISA, STS-EV, CCSK, CompTIA Cloud
Essentials
Principal, nControl, LLC
Adjunct Professor
President, Cloud Security Alliance – Delaware Valley Chapter (CSA-DelVal)

2. Big Data Cloud
• Presentation Overview
– Why Should You Care?
– Cloud Overview
– Big Data Overview
– Cloud-Based Big Data Offerings
– Securing Cloud-Based DB Solutions

3. Big Data Cloud
• Why Should You Care
– Organizational Cost Reduction Requirements
• Justify Investments
• Improve Efficiencies (Productivity, Time to Market)
– Digital Information – 60%~ Annual Growth Rate (AGR)
– Data Storage – 15-20% AGR Capital Expense (CapEx)
– Categorization, Classification & Retention Magnify
• Compliance, Legal & Privacy Regulations
– Prevalent & Interconnected Business Ecosystems
• Supply Chains
• Business Process Outsourcers (BPO)
• Information Technology Outsourcers (ITO)
• Vendor’s Vendors Source: IDC

4. Source: NIST

5. Service Delivery Models
Source: Swain Techs

6. Source: Matthew Gardiner, Computer Associates

7. Big Data Cloud
Source: Flickr

8. Big Data Cloud
• Big Data Overview
– Aggregated Data from the Following Sources
• Traditional
• Source
• Social

9. Big Data Cloud
• Traditional Data
– Database Management Systems
• Relational Database Management Systems (RDBMS)
• Object-Oriented Database Management Systems (OODBMS)
• Non-Relational, Distributed DB Management Systems (NRDBMS)
• Mobile Databases (SQLite, Oracle Lite)
– Online Transaction Processing (OLTP)
• Real-Time Data Warehousing
– Online Analytical Processing (OLAP)
• Operational Data Stores (ODS)
• Enterprise Data Warehouse (EDW)

10. Big Data Cloud
• Traditional Data
– OLAP
• Business Intelligence (BI)
– Data Mining
– Reporting
– OLAP (Continued)
» Relational OLAP (ROLAP)
» Multi-Dimensional OLAP (MOLAP)
» Hybrid OLAP (HOLAP)
OLTPODSEDW (Data Marts)BI (Data Mining)
OLTPODSEDW (Data Marts)BI (Reporting)
OLTPODSEDW (Data Marts)BI (OLAP)

11. Big Data Cloud
Source: Flickr

12. Big Data Cloud
• Source Data
– Log Files
• Event Logs / Operating System (OS) - Level
• Appliance / Peripherals
• Analyzers / Sniffers
– Multimedia
• Image Logs
• Video Logs
– Web Content Management (WCM)
• Web Logs
• Search Engine Optimization (SEO)
– Web Metadata

14. Big Data Cloud
• Big Data Overview
– Aggregators
• Mostly NRDBMS Implemtations
– Not only – Structured Query Language (NoSQL)
• NRDBMS Examples
– Column Family Stores: BigTable (Google), Cassandra & HBase (Apache)
– Key-Values Stores: App Engine DataStore (Google), DynamoDB &
SimpleDB (AWS)
– Document Databases: CouchDB, MongoDB
– Graph Databases: Neo4J

15. Big Data Cloud
• Big Data Overview
– Serial Processing
• Hadoop
– Hadoop Distributed File System (HDFS)
– Hive – DW
– Pig – Querying Language
• Riak
– Parallel Processing
• HadoopDB
– Analytics
• Google MapReduce
• Apache MapReduce
• Splunk (for Security Information / Event Management [SIEM])

16. Source: Cloudera

17. Source: Wikispaces

18. Source: Google

19. Source: Cloudera

20. Big Data Cloud
• Cloud-Based Big Data Solutions
– PaaS
• DBaaS
– Amazon Web Services (AWS)
» DynamoDB
» SimpleDB
» Relational Database Service (RDS): Oracle 11g / MySQL
– Google App Engine
» Datastore
– Microsoft SQL Azure
– Oracle Public Cloud: 11g
• Processing
– AWS Elastic MapReduce (EMR)
– Google App Engine MapReduce: Mapper API
– Microsoft: Apache Hadoop for Azure
– IBM SmartCloud Enterprise on IBM InfoSphere BigInsights Basics

21. Big Data Cloud

22. Big Data Cloud

23. Big Data Cloud

24. Big Data Cloud

25. Big Data Cloud

28. Big Data Cloud
• Cloud-Based Database Solutions
– IaaS
• Basic Components: Compute & Storage Nodes
– AWS Elastic Compute Cloud (EC2)
– AWS Elastic Block Store (EBS)
– OpenStack Compute (Nova)
– OpenStack Storage (Swift)
• Advanced Components
– Apache Hadoop
– Apache Hadoop MapReduce
• Commercial Applications
– Cloudera
– DataStax
– MapR
– Splunk

29. Big Data Cloud
AWS Cloud
EC2 Availability Zone S3 Storage
EBS EBS EBS EBS EBS EBS
EBS Snapshot
EBS Snapshot
EBS Snapshot
EC2 EC2 EC2 EBS Snapshot
EBS Snapshot
Internet
Source: Amazon

31. Big Data Cloud
• Big Data in the Cloud Use Cases
– Public Cloud
• AWS: EC2 Hadoop & S3
• AWS: EC2 Hadoop, DynamoDB & EMR
• AWS: EC2 Linux, Apache (w / Tomcat), DynamoDB & EMR
• AWS: EC2 Cloudera Hadoop & EMR
• AWS: EC2 Splunk
– Hybrid
• Oracle Big Data Appliance & Connector, Google App Engine
• OpenStack Swift, AWS EC2 Cloudera Hadoop & EMR
– Private Cloud
• OpenStack Nova & Swift, Apache Hadoop
• OpenStack Nova & Swift, Cloudera Hadoop

32. Big Data Cloud

33. Source: Flickr

34. Big Data Cloud
• Securing Cloud-Based NRDBMS Solutions
– General
• Focus on Application / Middleware-Level Security
– SQL Injections Are Still Possible
– Leverage Application IAM for NRDBMS User Rights Mgmt (URM)
– Leverage Application & System Logging for Authentication,
Authorization & Accounting (AAA)
• Segregation of Duties
– Read / Write Namespaces
– Read-Only Namespaces
– Specific
• Document
– Consistency Assurance
• Key / Value
– Ensure Referential Integrity

35. Big Data Cloud

36. Big Data Cloud
• Securing Big Data in the Cloud
– Identity & Access Management (IAM)
• Security Assertion Markup Language (SAML)
• Representational State Transfer (REST)
– AWS IAM
– Windows Azure Access Control Service (ACS)
• Web Services – Trust Language (WS-Trust)

37. Source: OASIS

38. Source: Intuit

39. Big Data Cloud
• Securing Big Data in the Cloud
– Identity & Access Management (IAM)
• Security Assertion Markup Language (SAML)
• Representational State Transfer (REST)
– AWS IAM
– Windows Azure Access Control Service (ACS)
• Web Services – Trust Language (WS-Trust)

40. Source: Apache

41. Big Data Cloud

42. Big Data Cloud

43. Big Data Cloud

44. Big Data Cloud
• Securing Big Data in the Cloud
– Identity & Access Management (IAM)
• Security Assertion Markup Language (SAML)
• Representational State Transfer (REST)
– AWS IAM
– Windows Azure Access Control Service (ACS)
• Web Services – Trust Language (WS-Trust)

45. Big Data Cloud

46. Big Data Cloud
• Securing Big Data in the Cloud
– Electronic Discovery (eDiscovery)
• eDiscovery Reference Model (EDRM)
• Legal Holds
• Litigation Response
– Records & Information Management (RIM)
• Generally Accepted Recordkeeping Principles (GARP®)
• Information Governance Reference Model (IGRM)
• Information Lifecycle Management (ILM)
• MIKE2.0

47. Big Data Cloud

48. Big Data Cloud
• Privacy & Data Protection for Big Data Clouds
– Jurisdictions*
• Regional: EU DPA
• National: PIPEDA, GLBA, HIPAA / HITECH, COPPA, Safe Harbor
• Statutory: Bavarian, CA SB 1386 / 24, MA 201 CMR 17, NV SB 227
– Data Flow & Jurisdictional Adherence
• Data Sharing with Third Parties
– Pseudonymization / De-Identification
• Consent & Notices
– Contract Clauses
• Model Contracts
– Privacy Best Practices
• Generally Accepted Privacy Principles (GAPP) * Not all inclusive.

49. Big Data Cloud
• Presentation Take-Aways
– Big Data in the Cloud is Here to Stay
– It Has to be Secure
– Segregation of Data
– Access Controls
– Separation / Segregation of Duties
– Federated Identities
– Logging

50. • Questions?
• Contact
– Email: steve@ncontrol-llc.com
– Twitter: markes1
– LI: http://www.linkedin.com/in/smarkey
– CSA-DelVal: http://www.csadelval.org/