Data protection2015

Download as PPTX, PDF

•4 likes•890 views

The document discusses various aspects of enterprise data protection in Apache Hadoop, focusing on security architecture and potential attack vectors. It highlights threats such as accidental damage, remote access, eavesdropping, unauthorized user access to private data, and physical access. Additionally, it covers HDFS encryption and details about the encryption scheme and keyprovider API.

Technology

© Hortonworks Inc. 2015
Protecting Enterprise Data
in Apache Hadoop
April 2015
Page 1
Owen O’Malley
owen@hortonworks.com
@owen_omalley

© Hortonworks Inc. 2015
Security Architecture
Page 3

© Hortonworks Inc. 2015
Attack Vectors
Page 4

© Hortonworks Inc. 2015
Attack Vectors
Page 5

© Hortonworks Inc. 2015
Threat: Accidental Damage
Page 6

© Hortonworks Inc. 2015
Threat: Remote Access
Page 7

© Hortonworks Inc. 2015
Threat: Eavesdropping
Page 8

© Hortonworks Inc. 2015
Threat: User accesses private data
Page 9

© Hortonworks Inc. 2015
Threat: Physical access
Page 10

© Hortonworks Inc. 2015
Threat: Hadoop Admin in Cluster
Page 11

© Hortonworks Inc. 2015
HDFS Encryption
Page 12

© Hortonworks Inc. 2015
KeyProvider API
Page 13

© Hortonworks Inc. 2015
Encryption Scheme
Page 14

© Hortonworks Inc. 2015
Threat: User reads private columns
Page 15

© Hortonworks Inc. 2015
ORC File Layout
Page 16
File Footer
Postscript
Index Data
Row Data
Stripe Footer
256MBStripe
Index Data
Row Data
Stripe Footer
256MBStripe
Index Data
Row Data
Stripe Footer
256MBStripe
Column 1
Column 2
Column 7
Column 8
Column 3
Column 6
Column 4
Column 5
Column 1
Column 2
Column 7
Column 8
Column 3
Column 6
Column 4
Column 5
Stream 2.1
Stream 2.2
Stream 2.3
Stream 2.4

© Hortonworks Inc. 2015
Threat: User reads hidden values
Page 17

© Hortonworks Inc. 2015
Threat: Shadow Security
Page 18

© Hortonworks Inc. 2015
Resources
Page 19

© Hortonworks Inc. 2015
Thank You!
Page 20

More Related Content

PPTX

Protecting Enterprise Data in Apache HadoopOwen O'Malley

PPTX

Adding ACID Updates to HiveOwen O'Malley

PPTX

ORC Column EncryptionOwen O'Malley

PPTX

Protecting Enterprise Data in Apache HadoopDataWorks Summit

PDF

Plugging the Holes: Security and Compatability in HadoopOwen O'Malley

PPTX

File Format Benchmarks - Avro, JSON, ORC, & ParquetOwen O'Malley

PPT

Hadoop Security ArchitectureOwen O'Malley

PPTX

Structor - Automated Building of Virtual Hadoop ClustersOwen O'Malley

Protecting Enterprise Data in Apache HadoopOwen O'Malley

Adding ACID Updates to HiveOwen O'Malley

ORC Column EncryptionOwen O'Malley

Protecting Enterprise Data in Apache HadoopDataWorks Summit

Plugging the Holes: Security and Compatability in HadoopOwen O'Malley

File Format Benchmarks - Avro, JSON, ORC, & ParquetOwen O'Malley

Hadoop Security ArchitectureOwen O'Malley

Structor - Automated Building of Virtual Hadoop ClustersOwen O'Malley

Viewers also liked (17)

PPTX

ORC File IntroductionOwen O'Malley

PDF

Bay Area HUG Feb 2011 IntroOwen O'Malley

PDF

Next Generation MapReduceOwen O'Malley

PDF

Next Generation Hadoop OperationsOwen O'Malley

PDF

Optimizing Hive QueriesOwen O'Malley

PDF

ORC FilesOwen O'Malley

PPTX

ORC File and Vectorization - Hadoop Summit 2013Owen O'Malley

PDF

Hadoop Security Now and Futuretcloudcomputing-tw

PDF

Optimizing Hive QueriesDataWorks Summit

PPTX

ORC 2015t3rmin4t0r

PDF

Parquet Hadoop Summit 2013Julien Le Dem

PPTX

Apache RangerRommel Garcia

PDF

Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...Hortonworks

PPTX

Hadoop Security Today & Tomorrow with Apache KnoxVinay Shukla

PDF

Hive tuningMichael Zhang

PPTX

Securing Hadoop with Apache RangerDataWorks Summit

PPTX

Hadoop securityShivaji Dutta

ORC File IntroductionOwen O'Malley

Bay Area HUG Feb 2011 IntroOwen O'Malley

Next Generation MapReduceOwen O'Malley

Next Generation Hadoop OperationsOwen O'Malley

Optimizing Hive QueriesOwen O'Malley

ORC FilesOwen O'Malley

ORC File and Vectorization - Hadoop Summit 2013Owen O'Malley

Hadoop Security Now and Futuretcloudcomputing-tw

Optimizing Hive QueriesDataWorks Summit

ORC 2015t3rmin4t0r

Parquet Hadoop Summit 2013Julien Le Dem

Apache RangerRommel Garcia

Discover HDP 2.2: Comprehensive Hadoop Security with Apache Ranger and Apache...Hortonworks

Hadoop Security Today & Tomorrow with Apache KnoxVinay Shukla

Hive tuningMichael Zhang

Securing Hadoop with Apache RangerDataWorks Summit

Hadoop securityShivaji Dutta

Similar to Data protection2015 (20)

PPTX

Protecting enterprise Data in HadoopDataWorks Summit

PPTX

Protecting Enterprise Data in Apache HadoopDataWorks Summit/Hadoop Summit

PPTX

Protecting Enterprise Data in Apache HadoopDataWorks Summit/Hadoop Summit

PPTX

Protecting Enterprise Data in Apache HadoopHortonworks

PPTX

Protecting Enterprise Data In Apache HadoopDataWorks Summit/Hadoop Summit

PDF

Keeping your Enterprise’s Big Data Secure by Owen O’Malley at Big Data Spain ...Big Data Spain

PDF

HDP Advanced Security: Comprehensive Security for Enterprise HadoopHortonworks

PDF

Hortonworks and Voltage Security webinarHortonworks

PDF

Hortonworks Protegrity Webinar: Leverage Security in Hadoop Without Sacrifici...Hortonworks

PDF

Hadoop Security Protecting Your Big Data Platform 1st Edition Ben Spiveybalonisongep63

PPTX

Fine Grain Access Control for Big Data: ORC Column EncryptionOwen O'Malley

PDF

Protect your Private Data in your Hadoop Clusters with ORC Column EncryptionDataWorks Summit

PDF

Protect your Private Data in your Hadoop Clusters with ORC Column EncryptionDataWorks Summit

PPTX

Curb Your Insecurity - Tips for a Secure Cluster (with Spark too)!!Pardeep Kumar Mishra (Big Data / Hadoop Consultant)

PPTX

Curb your insecurity with HDPDataWorks Summit/Hadoop Summit

PDF

Privacy Preserving Data Analytics using Cryptographic Technique for Large Dat...IRJET Journal

PDF

Hortonworks sqrrl webinar v5.pptxHortonworks

PPTX

Improvements in Hadoop SecurityDataWorks Summit

PPTX

Big Data Security on Microsoft Azure - HDInsight and HortonWorksLuan Moreno Medeiros Maciel

PDF

BigData Security - A Point of ViewKaran Alang

Protecting enterprise Data in HadoopDataWorks Summit

Protecting Enterprise Data in Apache HadoopDataWorks Summit/Hadoop Summit

Protecting Enterprise Data in Apache HadoopHortonworks

Protecting Enterprise Data In Apache HadoopDataWorks Summit/Hadoop Summit

Keeping your Enterprise’s Big Data Secure by Owen O’Malley at Big Data Spain ...Big Data Spain

HDP Advanced Security: Comprehensive Security for Enterprise HadoopHortonworks

Hortonworks and Voltage Security webinarHortonworks

Hortonworks Protegrity Webinar: Leverage Security in Hadoop Without Sacrifici...Hortonworks

Hadoop Security Protecting Your Big Data Platform 1st Edition Ben Spiveybalonisongep63

Fine Grain Access Control for Big Data: ORC Column EncryptionOwen O'Malley

Protect your Private Data in your Hadoop Clusters with ORC Column EncryptionDataWorks Summit

Curb Your Insecurity - Tips for a Secure Cluster (with Spark too)!!Pardeep Kumar Mishra (Big Data / Hadoop Consultant)

Curb your insecurity with HDPDataWorks Summit/Hadoop Summit

Privacy Preserving Data Analytics using Cryptographic Technique for Large Dat...IRJET Journal

Hortonworks sqrrl webinar v5.pptxHortonworks

Improvements in Hadoop SecurityDataWorks Summit

Big Data Security on Microsoft Azure - HDInsight and HortonWorksLuan Moreno Medeiros Maciel

BigData Security - A Point of ViewKaran Alang

More from Owen O'Malley (7)

PPTX

Running An Apache Project: 10 Traps and How to Avoid ThemOwen O'Malley

PPTX

Big Data's Journey to ACIDOwen O'Malley

PPTX

ORC Deep Dive 2020Owen O'Malley

PPTX

Protect your private data with ORC column encryptionOwen O'Malley

PPTX

Fast Access to Your Data - Avro, JSON, ORC, and ParquetOwen O'Malley

PDF

Strata NYC 2018 IcebergOwen O'Malley

PPTX

Fast Spark Access To Your Complex Data - Avro, JSON, ORC, and ParquetOwen O'Malley

Running An Apache Project: 10 Traps and How to Avoid ThemOwen O'Malley

Big Data's Journey to ACIDOwen O'Malley

ORC Deep Dive 2020Owen O'Malley

Protect your private data with ORC column encryptionOwen O'Malley

Fast Access to Your Data - Avro, JSON, ORC, and ParquetOwen O'Malley

Strata NYC 2018 IcebergOwen O'Malley

Fast Spark Access To Your Complex Data - Avro, JSON, ORC, and ParquetOwen O'Malley

Recently uploaded (20)

PPTX

AI and Robotics for Human Well-being.pptxJAYMIN SUTHAR

PDF

Presentation about Hardware and Software in Computersnehamodhawadiya

PDF

GDG Cloud Munich - Intro - Luiz Carneiro - #BuildWithAI - July - Abdel.pdfLuiz Carneiro

PDF

MASTERDECK GRAPHSUMMIT SYDNEY (Public).pdfNeo4j

PPTX

Agile Chennai 18-19 July 2025 Ideathon | AI Powered Microfinance Literacy Gui...AgileNetwork

PPTX

The-Ethical-Hackers-Imperative-Safeguarding-the-Digital-Frontier.pptxsujalchauhan1305

PDF

OFFOFFBOX™ – A New Era for African Film | Startup Presentationambaicciwalkerbrian

PDF

Structs to JSON: How Go Powers REST APIsEmily Achieng

PPTX

OA presentation.pptx OA presentation.pptxpateldhruv002338

PDF

Data_Analytics_vs_Data_Science_vs_BI_by_CA_Suvidha_Chaplot.pdfCA Suvidha Chaplot

PDF

The Future of Artificial Intelligence (AI)Mukul

PDF

Doc9.....................................SofiaCollazos

PPTX

Agile Chennai 18-19 July 2025 | Emerging patterns in Agentic AI by Bharani Su...AgileNetwork

PPTX

What-is-the-World-Wide-Web -- Introductiontonifi9488

PPTX

AI in Daily Life: How Artificial Intelligence Helps Us Every Dayvanshrpatil7

PDF

Using Anchore and DefectDojo to Stand Up Your DevSecOps FunctionAnchore

PDF

Software Development Methodologies in 2025KodekX

PPTX

Simple and concise overview about Quantum computing..pptxmughal641

PDF

A Strategic Analysis of the MVNO Wave in Emerging Markets.pdfIPLOOK Networks

PDF

Economic Impact of Data Centres to the Malaysian Economyflintglobalapac

AI and Robotics for Human Well-being.pptxJAYMIN SUTHAR

Presentation about Hardware and Software in Computersnehamodhawadiya

GDG Cloud Munich - Intro - Luiz Carneiro - #BuildWithAI - July - Abdel.pdfLuiz Carneiro

MASTERDECK GRAPHSUMMIT SYDNEY (Public).pdfNeo4j

Agile Chennai 18-19 July 2025 Ideathon | AI Powered Microfinance Literacy Gui...AgileNetwork

The-Ethical-Hackers-Imperative-Safeguarding-the-Digital-Frontier.pptxsujalchauhan1305

OFFOFFBOX™ – A New Era for African Film | Startup Presentationambaicciwalkerbrian

Structs to JSON: How Go Powers REST APIsEmily Achieng

OA presentation.pptx OA presentation.pptxpateldhruv002338

Data_Analytics_vs_Data_Science_vs_BI_by_CA_Suvidha_Chaplot.pdfCA Suvidha Chaplot

The Future of Artificial Intelligence (AI)Mukul

Doc9.....................................SofiaCollazos

Agile Chennai 18-19 July 2025 | Emerging patterns in Agentic AI by Bharani Su...AgileNetwork

What-is-the-World-Wide-Web -- Introductiontonifi9488

AI in Daily Life: How Artificial Intelligence Helps Us Every Dayvanshrpatil7

Using Anchore and DefectDojo to Stand Up Your DevSecOps FunctionAnchore

Software Development Methodologies in 2025KodekX

Simple and concise overview about Quantum computing..pptxmughal641

A Strategic Analysis of the MVNO Wave in Emerging Markets.pdfIPLOOK Networks

Economic Impact of Data Centres to the Malaysian Economyflintglobalapac

Data protection2015

1. © Hortonworks Inc. 2015 Protecting Enterprise Data in Apache Hadoop April 2015 Page 1 Owen O’Malley [email protected] @owen_omalley

16. © Hortonworks Inc. 2015 ORC File Layout Page 16 File Footer Postscript Index Data Row Data Stripe Footer 256MBStripe Index Data Row Data Stripe Footer 256MBStripe Index Data Row Data Stripe Footer 256MBStripe Column 1 Column 2 Column 7 Column 8 Column 3 Column 6 Column 4 Column 5 Column 1 Column 2 Column 7 Column 8 Column 3 Column 6 Column 4 Column 5 Stream 2.1 Stream 2.2 Stream 2.3 Stream 2.4