Title :
Delegated Access for Hadoop Clusters in the Cloud
Author :
Nunez, David ; Agudo, Isaac ; Lopez, Javier
Author_Institution :
Network, Inf. & Comput. Security Lab., Univ. de Malaga, Malaga, Spain
Abstract :
Among Big Data technologies, Hadoop stands out for its capacity to store and process large-scale datasets. However, although Hadoop was not designed with security in mind, it is widely used by plenty of organizations, some of which have strong data protection requirements. Traditional access control solutions are not enough, and cryptographic solutions must be put in place to protect sensitive information. In this paper, we describe a cryptographically-enforced access control system for Hadoop, based on proxy re-encryption. Our proposed solution fits in well with the outsourcing of Big Data processing to the cloud, since information can be stored in encrypted form in external servers in the cloud and processed only if access has been delegated. Experimental results show that the overhead produced by our solution is manageable, which makes it suitable for some applications.
Keywords :
Big Data; authorisation; cloud computing; cryptography; Hadoop clusters; big data technologies; cloud; cryptographically-enforced access control system; delegated access; external servers; large-scale datasets; organizations; proxy reencryption; Access control; Big data; Encryption; Proposals; Public key;
Conference_Titel :
Cloud Computing Technology and Science (CloudCom), 2014 IEEE 6th International Conference on
Conference_Location :
Singapore
DOI :
10.1109/CloudCom.2014.50
