Skip to main content
Disciplines
Automotive Business IT + Informatics Construction + Real Estate Electrical Engineering + Electronics Energy + Sustainability Insurance + Risk Finance + Banking Management + Leadership Marketing + Sales Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Topic Page
Marketing
Start single access now
Access for companies
EXTENDED SEARCH
Log in
Top
Published in:
ECDSA on Things: IoT Integrity Protection in Practise Read chapter Read first chapter

2016 | OriginalPaper | Chapter

SECapacity: A Secure Capacity Scheduler in YARN

Authors : Chuntao Dong, Qingni Shen, Lijing Cheng, Yahui Yang, Zhonghai Wu

Published in: Information and Communications Security

Publisher: Springer International Publishing

Log in

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

Abstract

In this paper, aiming to the requirement that isolation of user’s job and data security, we deeply analyze the mainstream computing framework Hadoop YARN, and start with the core module of YARN - resource scheduler. Using the existing label-based scheduling policy, we design and implement a SECapacity scheduler. Our main work including: First, according to the principle of least privilege, we propose a user-classification based scheduling policy, which divided users to several levels based on their attributes, then restrict which nodes could be used by this user according to the user level. Second, we design and implement a SECapacity scheduler to implement user-classification based scheduling. Third, we verify and analyze the effectiveness and efficiency of SECapacity scheduler, the results shows that SECapacity scheduler can ensure 100% isolation of users at different levels, and the performance overhead is about 6.95%.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

inform now
previous chapter Application of Stylometry to DarkWeb Forum User Identification
next chapter Integrity and Authenticity Protection with Selective Disclosure Control in the Cloud & IoT
Literature
1.
2.
Dean, J., Ghemawat, S.: MapReduce: simplified data processing on large clusters. In: Conference on Symposium on Operating Systems Design & Implementation, vol. 51, pp. 107–113. USENIX Association (2004)
3.
4.
Dinh, T.T.A., Saxena, P., Chang, E.C., et al.: M2R: enabling stronger privacy in mapreduce computation (2015)
5.
Dong, C., Shen, Q., Li, W., Yang, Y., Wu, Z., Wan, X.: Eavesdropper: a framework for detecting the location of the processed result in hadoop. In: Qing, S., Okamoto, E., Kim, K., Liu, D. (eds.) ICICS 2015. LNCS, vol. 9543, pp. 458–466. Springer, Heidelberg (2016). doi:10.​1007/​978-3-319-29814-6_​39 CrossRef
6.
Ohrimenko, O., Costa, M., Fournet, C., et al.: Observing and preventing leakage in MapReduce. In: ACM SIGSAC Conference, pp. 1570–1581 (2015)
7.
Roy, I., Setty, S.T.V., Kilzer, A., et al.: Airavat: security and privacy for MapReduce. In: Usenix Symposium on Networked Systems Design and Implementation, NSDI 2010, San Jose, pp. 297–312 (2010)
8.
Vavilapalli, V.K., Murthy, A.C., Douglas, C., et al.: Apache hadoop YARN: yet another resource negotiator. In: Symposium on Cloud Computing, pp. 1–16 (2013)
9.
Wei, W., Du, J., Yu, T., et al.: SecureMR: a service integrity assurance framework for MapReduce. In: Computer Security Applications Conference, pp. 73–82. IEEE (2009)
Metadata
Title
SECapacity: A Secure Capacity Scheduler in YARN
Authors
Chuntao Dong
Qingni Shen
Lijing Cheng
Yahui Yang
Zhonghai Wu
Copyright Year
2016
Book
Information and Communications Security

Print ISBN: 978-3-319-50010-2

Electronic ISBN: 978-3-319-50011-9

Copyright Year: 2016

DOI
https://doi.org/10.1007/978-3-319-50011-9_15

Premium Partner

    Image Credits