One result of Intel’s investment in Cloudera is putting together the teams to work on the same projects:
As the goals of Project Rhino and Sentry to develop more robust
authorization mechanisms in Apache Hadoop are in complete alignment, the
efforts of the engineers and security experts from both companies have
merged, and their work now contributes to both projects. The specific goal
is “unified authorization”, which goes beyond setting up authorization
policies for multiple Hadoop components in a single administrative tool; it
means setting an access policy once (typically tied to a “group” defined in
an external user directory) and having it enforced across all of the
different tools that this group of people uses to access data in Hadoop –
for example access through Hive, Impala, search, as well as access from
tools that execute MapReduce, Pig, and beyond.
A great first step.
You know what would be even better? A single security framework for Hadoop instead of two.
Original title and link: Hadoop security: unifying Project Rhino and Sentry