Big data security analysis and secure Hadoop server
Shanker, Kripa (2017)
Tampereen ammattikorkeakoulu
2017
Creative Commons Attribution-NonCommercial-ShareAlike 1.0 Finland
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-2018121020766
https://urn.fi/URN:NBN:fi:amk-2018121020766
Tiivistelmä
Hadoop is a so influential technology that’s let us to do incredible things but major thing to secure informative data and environment is a big challenge as there are many bad guys (crackers, hackers) are there to harm the society using this data. Hadoop is now used in retail, banking, and healthcare applications; it has attracted the attention of thieves as well. While storing sensitive huge data, security plays an important role to keep it safe. Security was not that much considered when Hadoop was initially designed.
Security is an important topic in Hadoop cluster. Plenty of examples are available in open media on data breaches and most recently was RANSOMEWARE which get access in server level which is more dangerous for an organizations. This is best time to only focus on security at any cost and time needed to secure data and platform. Hadoop is designed to run code on a distributed cluster of machines so without proper authentication anyone could submit code and it would be executed. Different projects have started to improve the security of Hadoop.
In this thesis, the security of the system in Hadoop version 1, Hadoop version 2 and Hadoop version 3 is evaluated and different security enhancements are proposed, considering security improvements made by the two mentioned projects, Project Apache Knox Gateway, Project Apache Ranger and Apache Sentry, in terms of encryption, authentication, and authorization.
This thesis suggests some high-level security improvements using hardening server implementing all best security practices and Kerberos. Hadoop Kerberos-based authentication is currently getting used widely. I am also going to use ElasticSearch method to analyze server errors log data to catch culprit of system and Server parameters, critical system alert notification with NetData
Security is an important topic in Hadoop cluster. Plenty of examples are available in open media on data breaches and most recently was RANSOMEWARE which get access in server level which is more dangerous for an organizations. This is best time to only focus on security at any cost and time needed to secure data and platform. Hadoop is designed to run code on a distributed cluster of machines so without proper authentication anyone could submit code and it would be executed. Different projects have started to improve the security of Hadoop.
In this thesis, the security of the system in Hadoop version 1, Hadoop version 2 and Hadoop version 3 is evaluated and different security enhancements are proposed, considering security improvements made by the two mentioned projects, Project Apache Knox Gateway, Project Apache Ranger and Apache Sentry, in terms of encryption, authentication, and authorization.
This thesis suggests some high-level security improvements using hardening server implementing all best security practices and Kerberos. Hadoop Kerberos-based authentication is currently getting used widely. I am also going to use ElasticSearch method to analyze server errors log data to catch culprit of system and Server parameters, critical system alert notification with NetData