Sqrrl, profile picture
Uploaded bySqrrl
PDF, PPTX561 views

Meetup presenation 06192013

This document discusses security issues with big data and Hadoop. It notes that less than 5% of data is analyzed due to security concerns. It also states that while big data technologies provide increased profits across many business functions, the growth of big data without effective security solutions poses risks. The document proposes an approach called data-centric security that embeds security attributes and policies directly into the data itself to control access at the cell level within Hadoop.

Embed presentation

Download as PDF, PPTX
sqrrl Secure.  Scale.  Adapt   Sqrrl Data, Inc., All Rights Reserved Security  of  data  within  Hadoop  
2   Sqrrl Data, Inc., All Rights Reserved Problem   <5%  of   Data   Solu+on   General Data Problems Source:    Forrester  
3   Sqrrl Data, Inc., All Rights Reserved What about security? 3  
4   Sqrrl Data, Inc., All Rights Reserved What is the market saying? security  becomes  an  “enabler”   by  making  it  possible  to  bring   together  huge  stores  of  data     You  want  security  to  be  just  as  scalable,  high-­‐ performance  and  self-­‐organizing  as  the   clusters   most  big  data  technologies  don’t  have  any  security   features  built  in   want  fine-­‐grained  security  and  policy  control  at  the   database-­‐level  
5   Sqrrl Data, Inc., All Rights Reserved   •  With  every  copy  of  data,  there  is  an  increased   risk  of  unintended  disclosure   •  Every  now  and  then  people  with  access  and   privileges  take  a  look  at  records  without  a   legiCmate  business  purpose  e.g.,  an  employee   of  a  banking  system  looking  up  their  neighbor   A few more risks…
6   Sqrrl Data, Inc., All Rights Reserved The Perfect Storm 6   Security   Analysis   Customer   Support   Customer   Profiles   Sales  &   MarkeCng   Social   Media   Business   Improvement   Big   Data   Regula+ons   &  Breaches   Increased profits Increased profits Increased profits Increased profits Increased profits Increased profits
7   Sqrrl Data, Inc., All Rights Reserved •  Big  Data  is  a  Cme-­‐bomb  based  on  how  things  are   coming  together   •  Big  Data  deployment  is  growing  fast;  rushing  into  it   •  Shortage  in  Big  Data  skills   •  Big  Data  security  soluCons  are  not  effecCve   •  General  shortage  in  security  skills   The Perfect Storm 7  
8   Sqrrl Data, Inc., All Rights Reserved So  what  can  we  do?  
9   Sqrrl Data, Inc., All Rights Reserved   (Def.)  A  form  of  security  in  which  data  carries  with  it  the   elements  of  provenance  that  are  required  to  make  policy   decisions  on  its  visibility:     •  Separate  data  modeling  for  security  and  analysis   •  Data  comes  with  security  aYributes  governing  its   visibility…..data  is  self-­‐describing   •  Reusability  of  applicaCons  across  security  domains   •  Distributed  development  of  ingest  and  query  applicaCons   •  Supported  by  Accumulo’s  cell-­‐level  security   Data-Centric Security
10   Sqrrl Data, Inc., All Rights Reserved Data-Centric Security Within  Accumulo,  a  key  is  a  5-­‐tuple,  consis+ng  of:       "   Row:  Controls  Atomicity   "   Column  Family:  Controls  Locality     "   Column  Qualifier:    Controls  Uniqueness   "   Visibility  Label:    Controls  Access   "   Timestamp:    Controls  Versioning   Row   Col.  Fam.   Col.  Qual.   Visibility   Timestamp   Value   John  Doe   Notes   PCP   PCP_JD   20120912   PaCent  suffers   from  an  acute  …   John  Doe   Test  Results   Cholesterol   JD|PCP_JD   20120912   183   John  Doe   Test  Results   Mental  Health   JD|PSYCH_JD   20120801   Pass   John  Doe   Test  Results   X-­‐Ray   JD|PHYS_JD   20120513   1010110110100…   Accumulo  Key/Value  Example  
11   Sqrrl Data, Inc., All Rights Reserved Data-Centric Security
12   Sqrrl Data, Inc., All Rights Reserved Data-Centric Security Row Col Value 1 Name Jones 1 Sales 100 1 Age 28 2 Name Smith 2 Sales 350 2 Age 25 2   Quota   1000   Row Col Value 1 Name Anon1 1 Sales 100 2 Name Smith 2 Sales 350 2   Quota   1000   User 1 User 2Data  Store   Data-­‐centric  security  approach  allows  all  the  data  to  be  stored  on  a   single  pla9orm  and  only  authorized  data  is  returned  to  the  user   Pushing  security  to  the  data-­‐level,  simplifies  applica@on  development   and  enables  more  powerful  queries  
13   Sqrrl Data, Inc., All Rights Reserved We  now  have  user  access  to  the   data  secured.    But  what  about  your   HDFS  administrators?   Encryption of Files
14   Sqrrl Data, Inc., All Rights Reserved Encryption of Files By  encrypCng  the  files  we  write   into  HDFS  we  further  eliminate   who  can  access  the  data!  

More Related Content

PPT
Exploring New Methods for Protecting and Distributing Confidential Research ...
byBryan Beecher
 
PDF
Expanded top ten_big_data_security_and_privacy_challenges
byTom Kirby
 
PPTX
Discovery of rest at data
bySanjeev Solanki
 
PPTX
Big data security challenges and recommendations!
bycisoplatform
 
PPTX
Discovery of rest at data
bySanjeev Solanki
 
PDF
Neo4j for Discovering Drugs and Biomarkers
byNeo4j
 
PPTX
Big Data Security Analytics (BDSA) with Randy Franklin
bySridhar Karnam
 
PDF
Poner en funcionamiento con alertas, dashboards customizados y líneas de tiempo
byElasticsearch
 
Exploring New Methods for Protecting and Distributing Confidential Research ...
byBryan Beecher
 
Expanded top ten_big_data_security_and_privacy_challenges
byTom Kirby
 
Discovery of rest at data
bySanjeev Solanki
 
Big data security challenges and recommendations!
bycisoplatform
 
Discovery of rest at data
bySanjeev Solanki
 
Neo4j for Discovering Drugs and Biomarkers
byNeo4j
 
Big Data Security Analytics (BDSA) with Randy Franklin
bySridhar Karnam
 
Poner en funcionamiento con alertas, dashboards customizados y líneas de tiempo
byElasticsearch
 

What's hot

PDF
Operar con alertas, dashboards customizados y cronología
byElasticsearch
 
PDF
Sqrrl Enterprise: Big Data Security Analytics Use Case
bySqrrl
 
PPTX
Security bigdata
byJitendra Chauhan
 
DOCX
Sqrrl
bySalman SH
 
PDF
Sqrrl Enterprise: Integrate, Explore, Analyze
bySqrrl
 
PDF
Ron Kasabian - Intel Big Data & Cloud Summit 2013
byIntelAPAC
 
PPTX
Big Data Day LA 2016/ NoSQL track - Privacy vs. Security in a Big Data World,...
byData Con LA
 
PDF
Aujas_Gartner_Dubai_v1_Nov15
bySameer Shelke
 
PPTX
Protecting health and life science organizations from breaches and ransomware
byCloudera, Inc.
 
PDF
Symantec Data Insight 4.0 July 2013
bySymantec
 
PPTX
Delivering improved patient outcomes through advanced analytics 6.26.18
byCloudera, Inc.
 
PDF
3 reasons to modernize your data estate
byServer Consultancy
 
PDF
Threat Ready Data: Protect Data from the Inside and the Outside
byDLT Solutions
 
PDF
Conferencia principal: Evolución y visión de Elastic Security
byElasticsearch
 
PDF
Symantec Data Insight for Storage
bySymantec
 
PDF
Data Breaches: The Untold Story
byIsabelle Dumont
 
PDF
Unlocking the Intelligence in Big Data
byIntel IT Center
 
PDF
Big Data Analytics to Enhance Security
byData Science Thailand
 
DOCX
Data security in cloud compu
byANIL247048
 
PDF
BIG DATA ANALYTICS,K.maheswari,II-M.sc(computer science),Bon Secours college...
bymaheswarikumaran
 
Operar con alertas, dashboards customizados y cronología
byElasticsearch
 
Sqrrl Enterprise: Big Data Security Analytics Use Case
bySqrrl
 
Security bigdata
byJitendra Chauhan
 
Sqrrl
bySalman SH
 
Sqrrl Enterprise: Integrate, Explore, Analyze
bySqrrl
 
Ron Kasabian - Intel Big Data & Cloud Summit 2013
byIntelAPAC
 
Big Data Day LA 2016/ NoSQL track - Privacy vs. Security in a Big Data World,...
byData Con LA
 
Aujas_Gartner_Dubai_v1_Nov15
bySameer Shelke
 
Protecting health and life science organizations from breaches and ransomware
byCloudera, Inc.
 
Symantec Data Insight 4.0 July 2013
bySymantec
 
Delivering improved patient outcomes through advanced analytics 6.26.18
byCloudera, Inc.
 
3 reasons to modernize your data estate
byServer Consultancy
 
Threat Ready Data: Protect Data from the Inside and the Outside
byDLT Solutions
 
Conferencia principal: Evolución y visión de Elastic Security
byElasticsearch
 
Symantec Data Insight for Storage
bySymantec
 
Data Breaches: The Untold Story
byIsabelle Dumont
 
Unlocking the Intelligence in Big Data
byIntel IT Center
 
Big Data Analytics to Enhance Security
byData Science Thailand
 
Data security in cloud compu
byANIL247048
 
BIG DATA ANALYTICS,K.maheswari,II-M.sc(computer science),Bon Secours college...
bymaheswarikumaran
 

Similar to Meetup presenation 06192013

PDF
Sqrrl February Webinar: Breaking Down Data Silos
bySqrrl
 
PDF
Sqrrl real time_big_data_20130411
bySqrrl
 
PDF
Sqrrl May Webinar: Data-Centric Security
bySqrrl
 
PDF
Isaca journal - bridging the gap between access and security in big data...
byUlf Mattsson
 
PPTX
Hadoop and Big Data Security
byChicago Hadoop Users Group
 
PDF
Sqrrl September Webinar: Cell-Level Security
bySqrrl
 
PDF
Five steps to secure big data
byUlf Mattsson
 
PPTX
Adam Fuchs' Accumulo Talk at NoSQL Now! 2013
bySqrrl
 
PDF
IRJET- Secured Hadoop Environment
byIRJET Journal
 
PDF
Sqrrl Overview for Stac Research
bySqrrl
 
PDF
Protecting your data against cyber attacks in big data environments
byat MicroFocus Italy ❖✔
 
PDF
Protecting your data against cyber attacks in big data environments
byat MicroFocus Italy ❖✔
 
PDF
Hugaccumulo 121018192044-phpapp02
bySqrrl
 
PDF
Big Data Security with Hadoop
byCloudera, Inc.
 
PPTX
Security issues in big data
byShallote Dsouza
 
PPTX
Sqrrl and Accumulo
byJohn Dougherty
 
PDF
To Serve and Protect: Making Sense of Hadoop Security
byInside Analysis
 
PPTX
Oct 2012 HUG: Apache Accumulo: Unlocking the Power of Big Data
byYahoo Developer Network
 
PDF
BigData Security - A Point of View
byKaran Alang
 
PDF
BIG DATA
byDr. Shashank Shetty
 
Sqrrl February Webinar: Breaking Down Data Silos
bySqrrl
 
Sqrrl real time_big_data_20130411
bySqrrl
 
Sqrrl May Webinar: Data-Centric Security
bySqrrl
 
Isaca journal - bridging the gap between access and security in big data...
byUlf Mattsson
 
Hadoop and Big Data Security
byChicago Hadoop Users Group
 
Sqrrl September Webinar: Cell-Level Security
bySqrrl
 
Five steps to secure big data
byUlf Mattsson
 
Adam Fuchs' Accumulo Talk at NoSQL Now! 2013
bySqrrl
 
IRJET- Secured Hadoop Environment
byIRJET Journal
 
Sqrrl Overview for Stac Research
bySqrrl
 
Protecting your data against cyber attacks in big data environments
byat MicroFocus Italy ❖✔
 
Protecting your data against cyber attacks in big data environments
byat MicroFocus Italy ❖✔
 
Hugaccumulo 121018192044-phpapp02
bySqrrl
 
Big Data Security with Hadoop
byCloudera, Inc.
 
Security issues in big data
byShallote Dsouza
 
Sqrrl and Accumulo
byJohn Dougherty
 
To Serve and Protect: Making Sense of Hadoop Security
byInside Analysis
 
Oct 2012 HUG: Apache Accumulo: Unlocking the Power of Big Data
byYahoo Developer Network
 
BigData Security - A Point of View
byKaran Alang
 
BIG DATA
byDr. Shashank Shetty
 

More from Sqrrl

PDF
Transitioning Government Technology
bySqrrl
 
PDF
Leveraging Threat Intelligence to Guide Your Hunts
bySqrrl
 
PDF
How to Hunt for Lateral Movement on Your Network
bySqrrl
 
PDF
Machine Learning for Incident Detection: Getting Started
bySqrrl
 
PDF
Building a Next-Generation Security Operations Center (SOC)
bySqrrl
 
PDF
User and Entity Behavior Analytics using the Sqrrl Behavior Graph
bySqrrl
 
PDF
Threat Hunting Platforms (Collaboration with SANS Institute)
bySqrrl
 
PPTX
Sqrrl and IBM: Threat Hunting for QRadar Users
bySqrrl
 
PPTX
Threat Hunting for Command and Control Activity
bySqrrl
 
PPTX
Modernizing Your SOC: A CISO-led Training
bySqrrl
 
PPTX
Threat Hunting vs. UEBA: Similarities, Differences, and How They Work Together
bySqrrl
 
PPTX
Leveraging DNS to Surface Attacker Activity
bySqrrl
 
PDF
The Art and Science of Alert Triage
bySqrrl
 
PDF
Reducing Mean Time to Know
bySqrrl
 
PDF
The Linked Data Advantage
bySqrrl
 
PDF
Sqrrl Datasheet: Cyber Hunting
bySqrrl
 
PDF
Benchmarking The Apache Accumulo Distributed Key–Value Store
bySqrrl
 
PDF
Scalable Graph Clustering with Pregel
bySqrrl
 
PDF
What's Next for Google's BigTable
bySqrrl
 
PDF
April 2015 Webinar: Cyber Hunting with Sqrrl
bySqrrl
 
Transitioning Government Technology
bySqrrl
 
Leveraging Threat Intelligence to Guide Your Hunts
bySqrrl
 
How to Hunt for Lateral Movement on Your Network
bySqrrl
 
Machine Learning for Incident Detection: Getting Started
bySqrrl
 
Building a Next-Generation Security Operations Center (SOC)
bySqrrl
 
User and Entity Behavior Analytics using the Sqrrl Behavior Graph
bySqrrl
 
Threat Hunting Platforms (Collaboration with SANS Institute)
bySqrrl
 
Sqrrl and IBM: Threat Hunting for QRadar Users
bySqrrl
 
Threat Hunting for Command and Control Activity
bySqrrl
 
Modernizing Your SOC: A CISO-led Training
bySqrrl
 
Threat Hunting vs. UEBA: Similarities, Differences, and How They Work Together
bySqrrl
 
Leveraging DNS to Surface Attacker Activity
bySqrrl
 
The Art and Science of Alert Triage
bySqrrl
 
Reducing Mean Time to Know
bySqrrl
 
The Linked Data Advantage
bySqrrl
 
Sqrrl Datasheet: Cyber Hunting
bySqrrl
 
Benchmarking The Apache Accumulo Distributed Key–Value Store
bySqrrl
 
Scalable Graph Clustering with Pregel
bySqrrl
 
What's Next for Google's BigTable
bySqrrl
 
April 2015 Webinar: Cyber Hunting with Sqrrl
bySqrrl
 

Recently uploaded

PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PPTX
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
PDF
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PDF
Designing a Blog Using Wordpress
bymarkzubi50
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PDF
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
PPTX
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PPTX
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
Designing a Blog Using Wordpress
bymarkzubi50
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 

Meetup presenation 06192013

  • 1.
    sqrrl Secure.  Scale.  Adapt   Sqrrl Data, Inc., All Rights Reserved Security  of  data  within  Hadoop  
  • 2.
    2   Sqrrl Data,Inc., All Rights Reserved Problem   <5%  of   Data   Solu+on   General Data Problems Source:    Forrester  
  • 3.
    3   Sqrrl Data,Inc., All Rights Reserved What about security? 3  
  • 4.
    4   Sqrrl Data,Inc., All Rights Reserved What is the market saying? security  becomes  an  “enabler”   by  making  it  possible  to  bring   together  huge  stores  of  data     You  want  security  to  be  just  as  scalable,  high-­‐ performance  and  self-­‐organizing  as  the   clusters   most  big  data  technologies  don’t  have  any  security   features  built  in   want  fine-­‐grained  security  and  policy  control  at  the   database-­‐level  
  • 5.
    5   Sqrrl Data,Inc., All Rights Reserved   •  With  every  copy  of  data,  there  is  an  increased   risk  of  unintended  disclosure   •  Every  now  and  then  people  with  access  and   privileges  take  a  look  at  records  without  a   legiCmate  business  purpose  e.g.,  an  employee   of  a  banking  system  looking  up  their  neighbor   A few more risks…
  • 6.
    6   Sqrrl Data,Inc., All Rights Reserved The Perfect Storm 6   Security   Analysis   Customer   Support   Customer   Profiles   Sales  &   MarkeCng   Social   Media   Business   Improvement   Big   Data   Regula+ons   &  Breaches   Increased profits Increased profits Increased profits Increased profits Increased profits Increased profits
  • 7.
    7   Sqrrl Data,Inc., All Rights Reserved •  Big  Data  is  a  Cme-­‐bomb  based  on  how  things  are   coming  together   •  Big  Data  deployment  is  growing  fast;  rushing  into  it   •  Shortage  in  Big  Data  skills   •  Big  Data  security  soluCons  are  not  effecCve   •  General  shortage  in  security  skills   The Perfect Storm 7  
  • 8.
    8   Sqrrl Data,Inc., All Rights Reserved So  what  can  we  do?  
  • 9.
    9   Sqrrl Data,Inc., All Rights Reserved   (Def.)  A  form  of  security  in  which  data  carries  with  it  the   elements  of  provenance  that  are  required  to  make  policy   decisions  on  its  visibility:     •  Separate  data  modeling  for  security  and  analysis   •  Data  comes  with  security  aYributes  governing  its   visibility…..data  is  self-­‐describing   •  Reusability  of  applicaCons  across  security  domains   •  Distributed  development  of  ingest  and  query  applicaCons   •  Supported  by  Accumulo’s  cell-­‐level  security   Data-Centric Security
  • 10.
    10   Sqrrl Data,Inc., All Rights Reserved Data-Centric Security Within  Accumulo,  a  key  is  a  5-­‐tuple,  consis+ng  of:       "   Row:  Controls  Atomicity   "   Column  Family:  Controls  Locality     "   Column  Qualifier:    Controls  Uniqueness   "   Visibility  Label:    Controls  Access   "   Timestamp:    Controls  Versioning   Row   Col.  Fam.   Col.  Qual.   Visibility   Timestamp   Value   John  Doe   Notes   PCP   PCP_JD   20120912   PaCent  suffers   from  an  acute  …   John  Doe   Test  Results   Cholesterol   JD|PCP_JD   20120912   183   John  Doe   Test  Results   Mental  Health   JD|PSYCH_JD   20120801   Pass   John  Doe   Test  Results   X-­‐Ray   JD|PHYS_JD   20120513   1010110110100…   Accumulo  Key/Value  Example  
  • 11.
    11   Sqrrl Data,Inc., All Rights Reserved Data-Centric Security
  • 12.
    12   Sqrrl Data,Inc., All Rights Reserved Data-Centric Security Row Col Value 1 Name Jones 1 Sales 100 1 Age 28 2 Name Smith 2 Sales 350 2 Age 25 2   Quota   1000   Row Col Value 1 Name Anon1 1 Sales 100 2 Name Smith 2 Sales 350 2   Quota   1000   User 1 User 2Data  Store   Data-­‐centric  security  approach  allows  all  the  data  to  be  stored  on  a   single  pla9orm  and  only  authorized  data  is  returned  to  the  user   Pushing  security  to  the  data-­‐level,  simplifies  applica@on  development   and  enables  more  powerful  queries  
  • 13.
    13   Sqrrl Data,Inc., All Rights Reserved We  now  have  user  access  to  the   data  secured.    But  what  about  your   HDFS  administrators?   Encryption of Files
  • 14.
    14   Sqrrl Data,Inc., All Rights Reserved Encryption of Files By  encrypCng  the  files  we  write   into  HDFS  we  further  eliminate   who  can  access  the  data!