Presentation is loading. Please wait.

Presentation is loading. Please wait.

© Cloud Security Alliance, 2015 Wilco van Ginkel, Co-Chair BDWG.

Published byClement Richardson Modified over 9 years ago

Similar presentations

Presentation on theme: "© Cloud Security Alliance, 2015 Wilco van Ginkel, Co-Chair BDWG."— Presentation transcript:

1 © Cloud Security Alliance, 2015 Wilco van Ginkel, Co-Chair BDWG

2 Agenda © Cloud Security Alliance, 2015 1.Big Data Level Set 2.Who are we? 3.What do we do? 4.What have we done so far? 5.What are we working on? 6.Q&A

3 Big Data Level Set © Cloud Security Alliance, 2015

4 © Cloud Security Alliance, 2015.

5 ‘Word on the street’ Sliding window Dimensions don’t always expand in the same directions. Examples: Twitter feeds (small data, but very high velocity) Hubble Telescope pictures (large pic, but low volume) Is Unstructured Data really unstructured?

6

7 What’s next in BD? Fast data (e.g., IoT) Climb up the BD stack Visualization Applying BD techniques to ‘Dark Data’ (e.g., Ayasdi) And much more… © Cloud Security Alliance, 2015.

8 BD Security… Yeah, what about it? © Cloud Security Alliance, 2015

9 © Cloud Security Alliance, 2015. Source: Verizon Big Data White Paper “How to thrive on the frontiers of data” Internal External Owned, subscribed, bought Format Governance Data silos Storage infrastructure Data Scientists Predictive Prescriptive Visualization Think different Not always why Plug information in business process Actionable Big Data Life Cycle

10 © Cloud Security Alliance, 2015. Still need to balance Risk Profile Security Requirements (CIAA) Business Requirements

11 © Cloud Security Alliance, 2015. And also ensure data qualities Source: ISACA White Paper “Big Data – Impact & Benefits”, March 2013

12 © Cloud Security Alliance, 2015. Can’t we just use current security controls and standards? Well, Yes and No…

13 Change of playing field… New Paradigm/Technology The Big Data V’s  Data Explosion Cloud: cheap & easy access to compute & storage Data on the go  Mobility all the way Data without borders Difference in international legislation … © Cloud Security Alliance, 2015.

14 So, there is work to do… © Cloud Security Alliance, 2015

15 Nice to meet you! © Cloud Security Alliance, 2015

16 Who are we? Started April 2012 Focus on Big Data Privacy & Security Different Initiatives/sub working groups Works together with other orgs, like NIST Leadership team: Chair - Sree Rajan, Fujitsu Co-Chair - Wilco van Ginkel, Verizon Co-chair - Neel Sundaresan, Ebay © Cloud Security Alliance, 2015.

17 Our Journey © Cloud Security Alliance, 2015. Develop best practices for security and privacy in big data Support industry and government on adoption of best practices Establish liaisons with other organizations in order to coordinate the development of big data security and privacy standards Accelerate the adoption of novel research aimed to address security and privacy issues

18 Focus areas © Cloud Security Alliance, 2015. Security Analytics Cryptography and Privacy Technologies Infrastructure Security Privacy, Policy, Governance and Legal Issue Framework and Taxonomy

19 What have we done so far? © Cloud Security Alliance, 2015

20 The Top Ten © Cloud Security Alliance, 2015. November 2012 April 2013 https://cloudsecurityalliance.org/download/top-ten-big-data-security-and-privacy-challenges/

21 © Cloud Security Alliance, 2014.

22 © Cloud Security Alliance, 2015. Use Case(s) Modeling Analysis Implementation

23 Big Data Analytics Report © Cloud Security Alliance, 2015. September 2013 https://cloudsecurityalliance.org/download/big-data-analytics-for-security-intelligence/

24 © Cloud Security Alliance, 2015. Examples WINE Platform BD Analytics for Security Botnet monitoring APT Detection

25 The Top Ten Crypto Challenges © Cloud Security Alliance, 2015. March 2014 https://cloudsecurityalliance.org/download/top-ten-challenges-in-cryptography-for-big-data/

26 Big Data Taxonomy © Cloud Security Alliance, 2015. Taxonomy = “The science or practice of classification”

27 Source: www.arthursclipart.org

28 Big Data Taxonomy © Cloud Security Alliance, 2015. September 2014 https://cloudsecurityalliance.org/download/big-data-taxonomy/

29 © Cloud Security Alliance, 2015.

30

31 Other initiatives © Cloud Security Alliance, 2015

32 BDWG Other Initiatives We provided input for the upcoming NIST Big Data Standard. We provided comments to the White House Request for Comment on Big Data Privacy. Check out: https://cloudsecurityalliance.org/download/big-data-big-concerns-and- what-the-white-house-wants-to-do-about-it/ https://cloudsecurityalliance.org/download/big-data-big-concerns-and- what-the-white-house-wants-to-do-about-it/ Lots of media interviews. Particularly after we have published a deliverable © Cloud Security Alliance, 2015.

33 What is next? © Cloud Security Alliance, 2015

34

35 10 Sections 1.Secure Computations in Distributed Programming Frameworks 2.Security Best Practices for Non-Relational Data Stores 3.Secure Data Storage and Transactions Logs 4.End-point Input Validation/Filtering 5.Real-Time Security/Compliance Monitoring 6.Scalable and Composable Privacy-Preserving analytics 7.Crypto-Enforced Access Control and Secure Communication 8.Granular Access Control 9.Granular Audits 10.Data Provenance © Cloud Security Alliance, 2015.

36 Help needed… 1.Secure Computations in Distributed Programming Frameworks 2.Security Best Practices for Non-Relational Data Stores 3.Secure Data Storage and Transactions Logs 4.End-point Input Validation/Filtering 5.Real-Time Security/Compliance Monitoring 6.Scalable and Composable Privacy-Preserving analytics 7.Crypto-Enforced Access Control and Secure Communication 8.Granular Access Control 9.Granular Audits 10.Data Provenance © Cloud Security Alliance, 2015.

37 How to get involved? © Cloud Security Alliance, 2015. CSA Big Data Working Group Site: https://cloudsecurityalliance.org/research/big-data/ CSA, Big Data LinkedIn: http://www.linkedin.com/groups?home=&gid=4458215&trk=anet_ug_hm Basecamp Project Collaboration Site Request Form https://cloudsecurityalliance.org/research/basecamp/ For any questions/remarks/feedback, please contact either: WhoHow Sreeranga (Sree) Rajan (Fujitsu)sree@us.fujitsu.com Wilco van Ginkel (Verizon)wilco.vanginkel@verizon.com Neel Sundaresan (eBay)nsundaresan@ebay.com

38 ? ? ? ? © Cloud Security Alliance, 2015

Download ppt "© Cloud Security Alliance, 2015 Wilco van Ginkel, Co-Chair BDWG."

Similar presentations

©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone Effective PR: the Power of Three Craig Coward Context Public Relations.

©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone Effective PR: the Power of Three Craig Coward Context Public Relations.
INTERNATIONAL CLOUD SOFTWARE SYMPOSIUM, HELSINKI, 13.12.2013.

INTERNATIONAL CLOUD SOFTWARE SYMPOSIUM, HELSINKI,
NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,

NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,
Reference Architecture Subgroup NIST Big Data Public Working Group Reference Architecture Subgroup September 30, 2013 Co-chairs: Orit LevinMicrosoft James.

Reference Architecture Subgroup NIST Big Data Public Working Group Reference Architecture Subgroup September 30, 2013 Co-chairs: Orit LevinMicrosoft James.
Fraud Detection in Banking using Big Data By Madhu Malapaka For ISACA, Hyderabad Chapter Date: 14 th Dec 2014 Wilshire Software.

Fraud Detection in Banking using Big Data By Madhu Malapaka For ISACA, Hyderabad Chapter Date: 14 th Dec 2014 Wilshire Software.
ONS Big Data Project. Plan for today Introduce the ONS Big Data Project Provide a overview of our work to date Provide information about our future plans.

ONS Big Data Project. Plan for today Introduce the ONS Big Data Project Provide a overview of our work to date Provide information about our future plans.
Information Security for the Data Management Professional Micheline Casey Chief Data Officer Federal Reserve Board.

Information Security for the Data Management Professional Micheline Casey Chief Data Officer Federal Reserve Board.
NIST Big Data Public Working Group Reference Architecture Subgroup September 30, 2013 Co-chairs: Orit LevinMicrosoft James KetnerAT&T Don KrapohlAugmented.

NIST Big Data Public Working Group Reference Architecture Subgroup September 30, 2013 Co-chairs: Orit LevinMicrosoft James KetnerAT&T Don KrapohlAugmented.
NIST BIG DATA WG Reference Architecture Subgroup Meeting Agenda Co-chairs: Orit Levin (Microsoft) James Ketner (AT&T) Don Krapohl (Augmented Intelligence)

NIST BIG DATA WG Reference Architecture Subgroup Meeting Agenda Co-chairs: Orit Levin (Microsoft) James Ketner (AT&T) Don Krapohl (Augmented Intelligence)
Www.cloudsecurityalliance.org John Howie Big Data: Answering Questions and Solving Society’s Problems, but at What Cost?

John Howie Big Data: Answering Questions and Solving Society’s Problems, but at What Cost?
Standards for Shared ICT Jeju, 13 – 16 May 2013 Gale Lightfoot Senior Staff Program Manager, Office of the CTO, SPB Cisco ATIS Cybersecurity Standards.

Standards for Shared ICT Jeju, 13 – 16 May 2013 Gale Lightfoot Senior Staff Program Manager, Office of the CTO, SPB Cisco ATIS Cybersecurity Standards.
8/15/2013NIST Big Data WG / Ref Arch Subgroup1 NIST Big Data Program Alignment: Roadmap & Reference Architecture Version 1.3 Roadmap Subgroup NIST Big.

8/15/2013NIST Big Data WG / Ref Arch Subgroup1 NIST Big Data Program Alignment: Roadmap & Reference Architecture Version 1.3 Roadmap Subgroup NIST Big.
U.S. Department of the Interior U.S. Geological Survey CDI Webinar Series 2013 Mobile Framework Lorna Schmid, AEI Tim Kern, Fort Collins Science Center.

U.S. Department of the Interior U.S. Geological Survey CDI Webinar Series 2013 Mobile Framework Lorna Schmid, AEI Tim Kern, Fort Collins Science Center.
Opportunities and Challenges for Public Auditors.

Opportunities and Challenges for Public Auditors.
Business Intelligence: The Next Big Thing (Really!) John Bair CTO, Ajilitee Sep 14, 2012 Presented to TDWI St. Louis Chapter.

Business Intelligence: The Next Big Thing (Really!) John Bair CTO, Ajilitee Sep 14, 2012 Presented to TDWI St. Louis Chapter.
E-Safety Challenge College. Learning Objectives To assess the risks faced when online and how to use the options available to protect yourself.

E-Safety Challenge College. Learning Objectives To assess the risks faced when online and how to use the options available to protect yourself.
TWO MINUTE INTRODUCTION The Internet of Things – Automatski Corp. E: Founder &

TWO MINUTE INTRODUCTION The Internet of Things – Automatski Corp. E: Founder &
CREATING THE ENTERPRISE SOCIAL MEDIA GAME PLAN September 2013.

CREATING THE ENTERPRISE SOCIAL MEDIA GAME PLAN September 2013.
© 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker.

© 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker.
Bill Newhouse Program Lead National Initiative for Cybersecurity Education Cybersecurity R&D Coordination National Institute of Standards and Technology.

Bill Newhouse Program Lead National Initiative for Cybersecurity Education Cybersecurity R&D Coordination National Institute of Standards and Technology.

Similar presentations

Ads by Google