While organizations spend the next few days and weeks patching OpenSSL
vulnerabilities, the realization is setting in that we may never know the
full extent of the damage caused by Heartbleed.
Although Heartbleed was only announced in early April, it has actually been
present in OpenSSL versions dating back to March 2012. This means hackers
have had ample time to steal certificates and other sensitive information.
Making matters worse, it's nearly impossible for companies to know whether
their web communications have indeed been compromised.
What exactly is being exposed?
When exploited by a hack, Heartbeat (the name of the transport layer security
extension where the bug was found) dumps whatever data might reside in the
memory of client/server communications in small 64k chunks. Normally this
traffic is encrypted, but the bug actually compromises the secret keys, ... (more)
Few companies are enjoying a better run of news right now than Cloudera. In
mid-March the big data bell cow announced $160 million in funding led by T.
Rowe Price. Less than two weeks later, Intel’s mega investment of $740
million is still a popular topic around our company’s water cooler (yes, we
have a water cooler).
The company’s latest salvo happened this morning while most of the west
coast was still asleep. Today Cloudera announced the general availability of
Cloudera 5, the solution that will drive what Cloudera refers to as the
enterprise data hub. In short, the hub is a... (more)
The who's who of Big Data were out in full force at Strata last week, and
like the fall Strata/Hadoop World event in New York, the Santa Clara showcase
did not disappoint.
Allow me to share a few thoughts, straight from the Gazzang booth, which
occupied prime real estate right by the food and beverage area:
1) The hype around big data has died down... a lot. Svetlana Sicular of
Gartner famously (or infamously) noted early last year, big data is
descending into the "Trough of Disillusionment." While that sounds awful on
the surface, it's actually a sign of a maturing market. It me... (more)
Amid the slew of articles offering advice on Big Data, Joab
Jackson's, Five Things CIOs Should Know About Big Data. stood out because of
how absolutely spot on it was.
The five points he makes nearly always come up in our conversations with
customers and prospects:
You will need to think about big data. What we're seeing now is that the
price of entry to big data, at least from a CapEx standpoint, is pretty low.
Open source tools like Hadoop, Cassandra, MongoDB, MapReduce and others,
combined with the relatively low price of cloud computing, means
organizations that may not ha... (more)
I'd like to address a recent blog post in CloudTweaks titled, "Cloudera Not
Cutting It With Big Data Security." The author makes a number of very salient
and valid points about Hadoop security… or lack thereof.
Indeed the Apache Hadoop platform, which includes HDFS and MapReduce and
other projects like HBase, Mahout and Hive, was not designed for security.
The Hadoop name, for better or worse, is nearly synonymous with big data
because it delivers the "three V's" (velocity, variety, volume) at massive
scale, enabling organizations to crunch, process, analyze and retain data