Security for big data analytics is challenging. Here’s why: When you can’t analyze in place, you need to copy that data — at which point all the stipulations about who can see or change all manner of data under what circumstance should be replicated, too. Today, that’s nearly impossible to do.
On the Hadoop/Spark side, we have only role-based, limited access control lists (ACLs) or the Wild West. But I believe there’s a way forward: Adopt the policy-based approach that has arisen in the broader security market. To explore how that could work, we need to revisit the history of access control and how it evolved to produce a policy-based model.
To read this article in full or to leave a comment, please click here