Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Celebrating as our community reaches 100,000 members! Thank you!
Solved Go to solution

Hadoop data linking from multiple sources

Labels:
avatar
author-rank learninghuman
Expert Contributor

Created ‎06-28-2016 10:13 PM

Data comes from multiple sources and these are exposed in the hive table for the users. A specific column is sensitive and needs to be given restricted access. If a user who wants to join 2 such tables on the column that he does not have access to, then whats the best approach to make it work? One option is to link the sensitive column with a generated key so that the user can join on the generated key. Is this a good idea or any better idea?

1,219 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank bleonhardi
Master Guru

Created ‎06-29-2016 12:36 PM

You could create a hashed column for that key and choose the hash algorithm in a way that a hash collision is very unlikely. However I don't get the usecase completely. Couldn't you just create a new View that already joins the two tables together and only give access to the resulting columns?

Table A ( customers web site a )

Name, Address, CreditCard

Table B ( customers web site b )

Name, Address, CreditCard

Create View C as

SELECT NameA,AddressA, NameB, AddressB from A,B where a.CreditCard = B.CreditCard;

And only give access to that view. I know this doesn't give the same flexibility but you do not need to do the whole hash thing.

If more flexibility is desired then your proposed approach of adding a masked column to both tables would be the way to go. I would think something like sha2 or the aes_encrypt function should provide a way to be very secure in avoiding hash collisions.

View solution in original post

772 Views
2 REPLIES 2

avatar
author-rank bleonhardi
Master Guru

Created ‎06-29-2016 12:36 PM

You could create a hashed column for that key and choose the hash algorithm in a way that a hash collision is very unlikely. However I don't get the usecase completely. Couldn't you just create a new View that already joins the two tables together and only give access to the resulting columns?

Table A ( customers web site a )

Name, Address, CreditCard

Table B ( customers web site b )

Name, Address, CreditCard

Create View C as

SELECT NameA,AddressA, NameB, AddressB from A,B where a.CreditCard = B.CreditCard;

And only give access to that view. I know this doesn't give the same flexibility but you do not need to do the whole hash thing.

If more flexibility is desired then your proposed approach of adding a masked column to both tables would be the way to go. I would think something like sha2 or the aes_encrypt function should provide a way to be very secure in avoiding hash collisions.

773 Views

avatar
author-rank learninghuman
Expert Contributor

Created ‎06-29-2016 01:00 PM

@Benjamin Leonhardi Thanks, makes sense

772 Views
0 Kudos
Announcements
Product Announcements
[ANNOUNCE] Cloudera on Public Cloud Runtime 7.2.18 is GA!
What's New @ Cloudera
Cloudera Operational Database (COD) supports enhancements to...
Community Announcements
March 2024 Community Highlights
Community Announcements
Celebrating 100,000 Members: A Journey of Growth and Connect...
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector for Apache Hive 2.6.2...
View More Announcements