A Survey on Hadoop Security and Comparative Analysis on Authentication Frameworks in Hadoop Clusters

Abstract

This paper presents a survey on various security frameworks which aim to secure Hadoop clusters and the files stored there. Most of the Hadoop platforms rely on Kerberos Authentication Protocol for user authentication. It is known that Kerberos itself has some vulnerabilities like Password Guessing Attacks, Single Point of Failure, Insider Attacks, and Time Synchronization problems. A new authentication framework that can address most of the identified issues and is computationally feasible than other schemes is introduced in this paper. The proposed framework is based on Secure Remote Password Protocol (SRP), Threshold Cryptography, and Blockchain Technology. The system focus on eradicating Password Guessing Attacks and Single Point of Failure in Kerberos Enabled Hadoop Clusters. The analysis results strengthen the claim that the proposed scheme beats the others in terms of computational efficiency and feasibility while offering the same security features. The paper is concluded with directions for future work.