Skip to main content
WorldCist'17 - 5th World Conference on Information Systems and Technologies

Full Program »

Insider Attacks in a Non-secure Hadoop Environment: a Survey

Security is not one of the key features of big data platforms and data security in these systems was not thought from scratch, and is of utmost importance especially when security is not enabled and configured. Big Data systems store and process millions of confidential information from people all over the world: credit cards, addresses, health data, financial data, etc. Apache Hadoop, one of most popular big data platforms, stores important amounts of data that is also subject to attacks. The main problem is by default these platforms not have active security and there is no valid and reliable authentication model, which makes them vulnerable to internal attacks. In this paper we assess the importance of security mechanisms and how they are configured on big data platforms. We also evaluate the impact of encryption mechanisms in these platforms. This work allowed us to conclude that most of the big data administrators do not configure the security mechanisms that by default are not active and are subject to insider attacks.

Author(s):

Pedro Camacho    
ISEC - Polytechnic of Coimbra
Portugal

Bruno Cabral    
DEI-CISUC
Portugal

Jorge Bernardino    
ISEC - Polytechnic of Coimbra
Portugal

 

Powered by OpenConf®
Copyright ©2002-2016 Zakon Group LLC