3. Security
context needs
to be sent with
the data
Identities
need to be
consistent
Data + Data
has to be
managed
Public Data Public Data Restricted
Data
Notes de l'éditeur
Todays security environment for Big Data has several characteristics:Grown organicallyLimited consistency in authentication, authorization and auditingEvery time data is migrated, ACLs and context is lostData can easily be combined in ways never expected
The solution to the growing challenge has three components:Security context needs to be sent with the data – When ETL or ELT operations move data between environments, the context and permissions should be sent with the data, in a standard format to allow other applications to enforce policies already in placeIdentities need to be consistent for both access and auditing of dataData needs to be managed to ensure that if combined with other silos, access and policies are enforced with the newly combined data which could have alternate policies for access and control