hadoop-common-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kan Zhang <...@yahoo-inc.com>
Subject Re: Design for security in Hadoop
Date Wed, 25 Mar 2009 19:01:11 GMT



On 3/20/09 2:47 PM, "Amandeep Khurana" <amansk@gmail.com> wrote:

> 
> 2. The Jira doesnt have cover the access control aspect of things. As a
> client, I can skip talking to the NN and get blocks from the DN straight
> away. There is no way to prevent it. This paper takes care of that aspect as
> well.
> 

Have you looked at HADOOP-4359? In that JIRA, we discussed the idea of using
public-key signed capabilities and dismissed it in favor of symmetric-key
based capabilities. That said, you're welcome to explore the public-key idea
further.

Kan


Mime
View raw message