book

Securing Hadoop

by Sudheesh Narayan

November 2013

Intermediate to advanced

116 pages

2h 44m

English

Packt Publishing

Read now

Unlock full access

Support files, eBooks, discount offers and moreWhy Subscribe?Free Access for Packt account holders
What this book covers

ErrataPiracyQuestions
Why do we need to secure Hadoop?
Reference architecture for Big Data security
What is Kerberos?Key Kerberos terminologiesHow Kerberos works?Kerberos advantages
User-level access controlsService-level access controlsUser and service authenticationDelegation TokenJob TokenBlock Access Token
Prerequisites
Installing the Key Distribution CenterConfiguring the Key Distribution CenterEstablishing the KDC databaseSetting up the administrator principal for KDCStarting the Kerberos daemonsSetting up the first Kerberos administratorAdding the user or service principalsConfiguring LDAP as the Kerberos databaseSupporting AES-256 encryption for a Kerberos ticket
Setting up the Kerberos client on all the Hadoop nodesSetting up Hadoop service principalsCreating a keytab file for the Hadoop servicesDistributing the keytab file for all the slavesSetting up Hadoop configuration filesHDFS-related configurationsMRV1-related configurationsMRV2-related configurationsSetting up secured DataNodeSetting up the TaskController class
Configuring Kerberos for Hadoop ecosystem componentsSecuring HiveSecuring Hive using SentrySecuring OozieSecuring FlumeSecuring Flume sourcesSecuring Hadoop sinkSecuring a Flume channelSecuring HBaseSecuring SqoopSecuring Pig
Integrating Enterprise Identity Management systemsConfiguring EIM integration with HadoopIntegrating Active-Directory-based EIM with the Hadoop ecosystem
HttpFSHUEKnox Gateway Server
Securing sensitive data in HadoopApproach for securing insights in HadoopSecuring data in motionSecuring data at restImplementing data encryption in Hadoop
Security Incident and Event Monitoring in a Hadoop ClusterThe Security Incident and Event Monitoring (SIEM) system
Configuring Hadoop audit logs
Hadoop distribution with enhanced security support
Cloudera ManagerZettaset
Dataguise for HadoopGazzang zNcrypteCryptfs for Hadoop
Infrastructure securityOS and filesystem securityApplication securityNetwork perimeter securityData masking and encryptionAuthentication and authorizationAudit logging, security policies, and proceduresSecurity Incident and Event Monitoring

Overview

"Securing Hadoop" provides a comprehensive guide to implementing and understanding security within a Hadoop-based Big Data ecosystem. The book explores key topics like authentication, authorization, and data encryption, ensuring you gain practical insights on how to protect sensitive information effectively and integrate security measures into your Hadoop platform.

What this Book will help me do

Understand the key security challenges associated with Hadoop and Big Data platforms.
Learn how to implement Kerberos authentication and integrate it with Hadoop.
Master the configuration of authorization mechanisms for a secure Hadoop ecosystem.
Gain knowledge about security event auditing and monitoring techniques specifically for Hadoop.
Get a detailed overview of tools and protocols to build and secure a Hadoop infrastructure effectively.

Author(s)

Sudheesh Narayan is an experienced professional in the fields of Hadoop and enterprise security. With years of expertise in designing and implementing secure distributed data platforms, Sudheesh brings practical insights and step-by-step solutions to Hadoop practitioners. His teaching approach is hands-on, ensuring readers can directly apply theoretical concepts to real-world scenarios.

Who is it for?

This book is ideal for Hadoop practitioners including solution architects, administrators, and developers seeking to enhance their understanding of security mechanisms for Hadoop. It assumes a foundational knowledge of Hadoop and requires familiarity with basic security concepts. Readers aiming to implement secure Hadoop systems for enterprise-level applications will find this book especially beneficial.