Return-Path: 
 <common-issues-return-48641-apmail-hadoop-common-issues-archive=hadoop.apache.org@hadoop.apache.org>
X-Original-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Delivered-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 91690108BE
	for <apmail-hadoop-common-issues-archive@minotaur.apache.org>;
 Fri,  7 Jun 2013 06:08:24 +0000 (UTC)
Received: (qmail 85545 invoked by uid 500); 7 Jun 2013 06:08:23 -0000
Delivered-To: apmail-hadoop-common-issues-archive@hadoop.apache.org
Received: (qmail 85501 invoked by uid 500); 7 Jun 2013 06:08:22 -0000
Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:common-issues-help@hadoop.apache.org>
List-Unsubscribe: <mailto:common-issues-unsubscribe@hadoop.apache.org>
List-Post: <mailto:common-issues@hadoop.apache.org>
List-Id: <common-issues.hadoop.apache.org>
Reply-To: common-issues@hadoop.apache.org
Delivered-To: mailing list common-issues@hadoop.apache.org
Received: (qmail 85487 invoked by uid 99); 7 Jun 2013 06:08:22 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 07 Jun 2013 06:08:22 +0000
Date: Fri, 7 Jun 2013 06:08:22 +0000 (UTC)
From: "Kyle Leckie (JIRA)" <jira@apache.org>
To: common-issues@hadoop.apache.org
Message-ID: <JIRA.12651197.1370462920286.83612.1370585302367@arcas>
In-Reply-To: <JIRA.12651197.1370462920286@arcas>
References: <JIRA.12651197.1370462920286@arcas>
Subject: [jira] [Commented] (HADOOP-9621) Document/analyze current Hadoop
 security model
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/HADOOP-9621?page=3Dcom.atlassia=
n.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=3D136=
77837#comment-13677837 ]=20

Kyle Leckie commented on HADOOP-9621:
-------------------------------------

I think this is needed. I have not yet seen an analysis wrt the common secu=
rity principles.
               =20
> Document/analyze current Hadoop security model
> ----------------------------------------------
>
>                 Key: HADOOP-9621
>                 URL: https://issues.apache.org/jira/browse/HADOOP-9621
>             Project: Hadoop Common
>          Issue Type: Task
>          Components: security
>            Reporter: Brian Swan
>            Priority: Minor
>              Labels: documentation
>   Original Estimate: 336h
>  Remaining Estimate: 336h
>
> In light of the proposed changes to Hadoop security in Hadoop-9533 and Ha=
doop-9392, having a common, detailed understanding (in the form of a docume=
nt) of the benefits/drawbacks of the current security model and how it work=
s would be useful. The document should address all security principals, the=
ir authentication mechanisms, and handling of shared secrets through the le=
ns of the following principles: Minimize attack surface area, Establish sec=
ure defaults, Principle of Least privilege, Principle of Defense in depth, =
Fail securely, Don=E2=80=99t trust services, Separation of duties, Avoid se=
curity by obscurity, Keep security simple, Fix security issues correctly.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrato=
rs
For more information on JIRA, see: http://www.atlassian.com/software/jira