As you may be well aware, the open source solution that AWS provided when Elasticsearch went with their proprietary license model is Open Distro for Elasticsearch (ODFE), and this solution is now archived. This of course means that if you are still using ODFE, your solution is not supported, and you are now relying on very risky security that is no longer updated.
X-Pack or Search Guard
The big decision you now have is to go to the X-Pack security from Elasticsearch, or use an even better solution, which is Search Guard!
Search Guard is the robust security plugin for your Elasticsearch cluster, which provides years of Elasticsearch knowledge and security experience. Search Guard
is brought to you by a team that has been there since the start, and for a long time spearheading the provision of features such as mandatory TLS and multitenancy, as well as audit logging, compliance, alerting, and anomaly detection, ensuring the highest level of protection in your clusters, indices, and documents.
Using the Search Guard solution, you won't have to worry about expanding your cluster as your data grows and nodes are added. This is because the Search Guard licensing model is cluster based, rather than per node, alleviating any worries as your data increases.
As mentioned in this blog article from AWS
, we were instrumental in developing the security for ODFE, at a time when Elasticsearch were making their move away from true Open Source solutions.
"The security features included in Open Distro for Elasticsearch have been extremely popular, as open source Elasticsearch lacks even basic security features. To provide security for Open Distro for Elasticsearch, we worked with floragunn GmbH, a security specialist software company that develops Search Guard, a popular alternative to Elastic’s own commercial security features."
So put your trust in Search Guard for support and expertise that is second to none!
Guaranteed support with Search Guard
There are existing security issues in ODFE that won't be fixed. You can enter an issue into the ODFE GitHub repository where someone one day may take a look; or you can place your Elasticsearch security into the safe hands of Search Guard, and deploy a solution that ensures your cluster is protected with TLS security, authentication, end-to-end encryption, compliance, alerting, as well as anomaly detection features.
With the support and expertise of the Search Guard team, you can rest in the knowledge that your issues will be addressed and your platform receives new updates and features as they are released, safeguarding your data and ensuring peace of mind.
Image Source: Philipp Katzenberger on Unsplash