Securing your Hadoop cluster with Apache Ranger, Atlas and Knox

This talk will demonstrate how HDP delivers enterprise-class security and enables data governance via the deep integration of the following components in the stack:

  1. Apache Knox provides perimeter security, a REST API and an Application Gateway as the single entry point to your cluster. LDPA/Active Directory, SAML, Kerberos are all available integrations for enterprise level authentication services.
  2. Apache Ranger delivers a comprehensive approach to security for a Hadoop cluster. It provides a centralized platform to define, administer and manage security policies consistently across Hadoop components with fine-grain access control.
  3. Apache Atlas is the metadata governance framework for Hadoop. A scalable and extensible set of core foundational governance services – enabling enterprises to effectively and efficiently meet their compliance requirements within Hadoop and allows integration with the whole enterprise data ecosystem.

Kanto Attila
Principal Engineer, Hortonworks

Attila Kanto is a Principal Engineer at Hortonworks, currently the lead architect behind Cloudbreak and HDCloud for AWS, with over 10 years of industrial experience in the areas of soft real-time mediation, intelligent networks, distributed systems and cloud computing. Lately, he’s been focusing on some security aspects of our cloud offerings, with an occasional contribution to Apache Knox upstream.

Gegesy Zsombor
Staff Software Engineer, Hortonworks

Zsombor Gegesy is a Staff Software engineer in charge of leading the governance team within Sustaining Engineering. He’s responsible for delivering maintenance patches for Ranger, Atlas, Knox and our governance suite into scheduled maintenance releases and customer hotfixes. He’s been a frequent contributor to Apache Ranger upstream lately.