TY - GEN
T1 - A review of MongoDB and singularity container security in regards to HIPAA regulations
AU - Dissanayaka, Akalanka Mailewa
AU - Mengel, Susan
AU - Shetty, Roshan Ramprasad
AU - Gittner, Lisa
AU - Kothari, Samip
AU - Vadapalli, Ravi
N1 - Publisher Copyright:
© 2017 Association for Computing Machinery.
PY - 2017/12/5
Y1 - 2017/12/5
N2 - Nowadays Linux Containers 1 which have operating system level virtualization, are very popular over virtual machines (VMs) which have hypervisor or kernel level virtualization in high performance computing (HPC) due to reasons, such as high portability, high performance, efficiency and high security [1]. Hence, LXCs can make an efficient and secure big data analytic framework with the help of secure, efficient, easily scalable, and highly available databases. A concern for security on high performance computing clusters is high for the transdisciplinary Texas Tech University (TTU) EXPOSOME Project. This project mainly focuses on sensitive healthcare data which is operating in the Quanah Linux cluster in the High Performance Computing Center of Texas Tech University. Data privacy in this project is in 4 areas: the database, the network infrastructure, web applications, and physical security, in line with the Health Insurance Portability and Accountability Act (HIPAA). The study in this paper investigates how to assure the TTU EXPOSOME Project data security by proposing a secure data analytic framework with the Singularity Linux container and the MongoDB NoSQL database, commonly available at TTU. First, the paper investigates what are the advantages of LXCs over VMs with security and performance perspectives. Then, it focuses on four main HIPAA required areas in data security, such as authentication, authorization, encryption, and auditing, in order to make sure system security is assured to handle healthcare data. Finally it shows how the TTU EXPOSOME Project strengthens security in the aforementioned four areas using MongoDB and Singularity, such that system security is approaching compliance with HIPAA.
AB - Nowadays Linux Containers 1 which have operating system level virtualization, are very popular over virtual machines (VMs) which have hypervisor or kernel level virtualization in high performance computing (HPC) due to reasons, such as high portability, high performance, efficiency and high security [1]. Hence, LXCs can make an efficient and secure big data analytic framework with the help of secure, efficient, easily scalable, and highly available databases. A concern for security on high performance computing clusters is high for the transdisciplinary Texas Tech University (TTU) EXPOSOME Project. This project mainly focuses on sensitive healthcare data which is operating in the Quanah Linux cluster in the High Performance Computing Center of Texas Tech University. Data privacy in this project is in 4 areas: the database, the network infrastructure, web applications, and physical security, in line with the Health Insurance Portability and Accountability Act (HIPAA). The study in this paper investigates how to assure the TTU EXPOSOME Project data security by proposing a secure data analytic framework with the Singularity Linux container and the MongoDB NoSQL database, commonly available at TTU. First, the paper investigates what are the advantages of LXCs over VMs with security and performance perspectives. Then, it focuses on four main HIPAA required areas in data security, such as authentication, authorization, encryption, and auditing, in order to make sure system security is assured to handle healthcare data. Finally it shows how the TTU EXPOSOME Project strengthens security in the aforementioned four areas using MongoDB and Singularity, such that system security is approaching compliance with HIPAA.
KW - Big Data
KW - HIPAA
KW - HPC
KW - LXC
KW - Linux
KW - MongoDB
KW - NoSQL
KW - Security
KW - Singularity
UR - http://www.scopus.com/inward/record.url?scp=85058326791&partnerID=8YFLogxK
U2 - 10.1145/3147234.3148133
DO - 10.1145/3147234.3148133
M3 - Conference contribution
AN - SCOPUS:85058326791
T3 - UCC 2017 Companion - Companion Proceedings of the 10th International Conference on Utility and Cloud Computing
SP - 91
EP - 97
BT - UCC 2017 Companion - Companion Proceedings of the 10th International Conference on Utility and Cloud Computing
PB - Association for Computing Machinery, Inc
T2 - 10th IEEE/ACM International Conference on Utility and Cloud Computing, UCC 2017
Y2 - 5 December 2017 through 8 December 2017
ER -