Security and Compliance in Big Data

Title: Security and Compliance in Big Data

Description: Successful businesses recognize that information is a strategic tool that can help them gain advantage in today’s marketplace and transform the way they interact with customers. However, applications must also scale to levels that were unimaginable just a few years ago, and scaling alone isn’t enough. Companies also require that their applications are always available and lightning fast. This combination is where traditional databases fail. Technology leader O’Reilly notes that the characteristics of modern data “exceeds the processing capacity of conventional database systems. The data is too big, moves too fast, or doesn’t fit the structures of your database architectures. To gain value from this data, you must choose an alternative way to process it.”

Progressive, open source NoSQL database engines like Apache Cassandra™ are a modern alternative to legacy relational databases and address many of the structural challenges O’Reilly mentions. Apache Cassandra is a massively scalable NoSQL database architected from the ground up to provide continuous availability, linear scale performance, and a flexible data model for managing all types of data.

Today’s new rules of data management, coupled with the capabilities of NoSQL databases like Cassandra, might be why IT analysts such as Wikibon are bullish on big data, forecasting NoSQL growth at a rate of 60% until at least 2017.

In regulated industries such as health care, financial services and public education, the apparent lack of NoSQL security features can be a roadblock to big data adoption. DataStax, the company driving Apache Cassandra, attacks this concern with the latest release of DataStax Enterprise (the company’s production-certified Cassandra offering) by supplying enterprise-class security features that businesses need to protect key data assets. An integral part of this security offering includes a partnership with big data security leader, Gazzang, to bring additional data protection required to meet advanced external and internal security requirements.

DataStax and Gazzang are focused on providing customers a secure, scalable, high-performance NoSQL database that puts organizations on the path of managing modern data and meeting regulatory compliance initiatives. This paper examines how data encryption and key management techniques can enable DataStax customers to meet data security requirements associated with HIPAA, PCI-DSS, FERPA and the EU Data Protection Directive.