Article: An EFSM-based model for testing security issues in the Hadoop ecosystem Journal: International Journal of System of Systems Engineering (IJSSE) 2024 Vol.14 No.3 pp.324 - 347 Abstract: Today, the Hadoop infrastructure can be affected by several forms of attacks on public or hybrid clouds. In this work, we propose a comprehensive security scheme based on Kerberos and Adaptive eXtensible Access Control Markup Language (XACML) by considering some timing constraints. In a related context, the appropriate approach to checking the vulnerability of a Hadoop implementation is to perform tests according to predefined specifications. Therefore, the second contribution is to model the security system specifications using an extended finite state machine (EFSM) and to propose an architecture to handle the Hadoop testing process. Furthermore, we provide an algorithm to generate secure local test sequences (SeLTS) that describe the test execution at each port of the system. Finally, experimental results come along to validate our scheme in the healthcare system. As a result, we notice a remarkable time decrease in access request processing with a performance improvement using the new time-constrained approach. Inderscience Publishers - linking academia, business and industry through research

Title: An EFSM-based model for testing security issues in the Hadoop ecosystem

Authors: Oussama Maakoul; Lalla Amina Charaf; Widad Zerzzari; Abdessalam Ait Madi; Salma Azzouzi; My El Hassan Charaf

Addresses: Faculty of Science, Laboratory of Research in Informatics, Ibn Tofail University, 14000, Kenitra, Morocco ' National School of Applied Sciences, Ibn Tofail University, 14000, Kenitra, Morocco ' Faculty of Science, Laboratory of Research in Informatics, Ibn Tofail University, 14000, Kenitra, Morocco ' National School of Applied Sciences, Ibn Tofail University, 14000, Kenitra, Morocco ' Faculty of Science, Laboratory of Research in Informatics, Ibn Tofail University, 14000, Kenitra, Morocco ' Faculty of Science, Laboratory of Research in Informatics, Ibn Tofail University, 14000, Kenitra, Morocco

Abstract: Today, the Hadoop infrastructure can be affected by several forms of attacks on public or hybrid clouds. In this work, we propose a comprehensive security scheme based on Kerberos and Adaptive eXtensible Access Control Markup Language (XACML) by considering some timing constraints. In a related context, the appropriate approach to checking the vulnerability of a Hadoop implementation is to perform tests according to predefined specifications. Therefore, the second contribution is to model the security system specifications using an extended finite state machine (EFSM) and to propose an architecture to handle the Hadoop testing process. Furthermore, we provide an algorithm to generate secure local test sequences (SeLTS) that describe the test execution at each port of the system. Finally, experimental results come along to validate our scheme in the healthcare system. As a result, we notice a remarkable time decrease in access request processing with a performance improvement using the new time-constrained approach.

Keywords: EFSM; extended finite state machine; Hadoop; MapReduce; HDFS; Hadoop File System; XACML; eXtensible Access Control Markup Language; distributed test; ACL; access control list.

DOI: 10.1504/IJSSE.2024.138369

International Journal of System of Systems Engineering, 2024 Vol.14 No.3, pp.324 - 347

Received: 15 Sep 2022
Accepted: 09 Jan 2023
Published online: 01 May 2024 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: An EFSM-based model for testing security issues in the Hadoop ecosystem

Keep up-to-date