The only comprehensive, compliance-ready, transparent security solution for Hadoop
Securing Hadoop is more complex than for traditional data management infrastructure. Users love the ability to ingest any kind or amount of data and access it however they need, but this flexibility also creates risk for information security and compliance teams. Cloudera’s unique approach balances these needs with the agility required for wide business user adoption, enabling innovation without compromise.
Unified authentication and authorization
With more data access paths across batch, streaming, SQL, search, and more, synchronizing authentication and authorization policies leaves room for human error. Simply locking the cluster behind a firewall or gateway doesn’t solve the issue. Unlike other vendors, Cloudera provides comprehensive perimeter authentication and unified role-based access controls that preserve the agility of multiple entry points under strong security. Cloudera Manager makes it easy to configure industry-standard Kerberos, LDAP/AD, and SAML integrations to fit seamlessly into your existing environments.
End-to-end visibility for security audits
Once your Hadoop platform is secure, how can you ensure it remains that way? Cloudera provides the only native, end-to-end data and process audit solution for Hadoop, including full visibility into data lineage and usage, to verify authenticity and easily comply with regulatory requirements.
Native, transparent protection for data and metadata
Keep information secure at rest and in motion with Cloudera Enterprise, the only Hadoop platform with comprehensive native encryption and key management. Other Hadoop vendors only encrypt HDFS data, leaving log files and metadata repositories exposed to malicious actors. Cloudera Navigator Encrypt and Key Trustee protect everything in your cluster so you can meet compliance initiatives and ensure the integrity of your enterprise data.
Cloudera Navigator Encrypt provides massively scalable, high-performance encryption for critical Hadoop data. Navigator Encrypt leverages industry-standard AES-256 encryption and provides a transparent layer between the application and filesystem that dramatically reduces performance impact of encryption. With automatic deployment through Cloudera Navigator and simple configuration, you can secure your data with ease in minutes instead of days.
Cloudera Navigator Key Trustee is a “virtual safe-deposit box” for managing encryption keys and other security assets. It provides software-based key management that supports a variety of robust, configurable, and easy-to-implement policies governing access to secure artifacts. In compliance with NIST requirements, these keys and other Hadoop security assets are always stored separately from encrypted data and wrapped in multiple layers of cryptography.
Meet compliance requirements in your industry
In regulated industries, analytics adoption can be limited by compliance requirements and the need to integrate with other compliance-ready systems. Without the right approach, Hadoop simply becomes another isolated silo with limited data. Today, Cloudera is the only Hadoop vendor to have achieved a PCI compliance certification and has the unique expertise necessary to help you navigate and pass a compliance audit.
Dedicated to Hadoop security innovation
Cloudera maintains a unique Center for Security Excellence, dedicated entirely to enterprise Hadoop security. Based in Austin, Texas, and founded by the original team from Gazzang, the leaders in big data protection, the Cloudera Center for Security Excellence develops comprehensive data and cluster-security technologies, while also enabling integration with key security partners. Featuring the industry’s only dedicated Hadoop security test and certification lab, it is yet another way Cloudera continues to drive innovation and value for our loyal customers.