Security Considerations in NoSQL Data Access
Share this Session:
  Srini Penchikala   Srini Penchikala
Editor
InfoQ
 


 

Thursday, August 25, 2011
12:00 PM - 12:50 PM

Level:  Technical - Intermediate


NoSQL databases have been gaining popularity in the recent years. These solutions offer great flexibility and scalability compared to the traditional relational databases. It's critical to manage the security aspects of the data throughout its life cycle.

In this session, I will discuss the security considerations when using NoSQL database solutions, including application (authentication and authorization) and data encryption aspects. Following items will be covered in the presentation:

  • Data Security considerations and requirements in NoSQL world
  • Authentication
  • Role Based Access Control (RBAC)
  • Data Encryption
  • Security Logging and Auditing
  • Monitoring
  • Sample Application with code examples


Srini currently works as a Security Architecture Program Manager at a major financial services organization in Austin area. He has over 17 years of experience in security and risk program management. Srini's main areas of interest are Agile Enterprise and Security Architecture, Agile Risk Management. He has presented at conferences like JavaOne, SEI Architecture Technology Conference (SATURN), IT Architect Conference (ITARC), No Fluff Just Stuff, and Project World Conference. He has also published several articles on Security Architecture, Agile Security Methodologies on websites like InfoQ.com, ServerSide.com, ONJava, DevX Java, java.net and JavaWorld. Srini publishes a blog on Java, JEE, and other topics at http://srinip2007.blogspot.com/.


   
Close Window