Return-Path: 
 <common-issues-return-49130-apmail-hadoop-common-issues-archive=hadoop.apache.org@hadoop.apache.org>
X-Original-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Delivered-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 3B7CF109FF
	for <apmail-hadoop-common-issues-archive@minotaur.apache.org>;
 Wed, 19 Jun 2013 07:15:28 +0000 (UTC)
Received: (qmail 13852 invoked by uid 500); 19 Jun 2013 07:15:22 -0000
Delivered-To: apmail-hadoop-common-issues-archive@hadoop.apache.org
Received: (qmail 13455 invoked by uid 500); 19 Jun 2013 07:15:21 -0000
Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:common-issues-help@hadoop.apache.org>
List-Unsubscribe: <mailto:common-issues-unsubscribe@hadoop.apache.org>
List-Post: <mailto:common-issues@hadoop.apache.org>
List-Id: <common-issues.hadoop.apache.org>
Reply-To: common-issues@hadoop.apache.org
Delivered-To: mailing list common-issues@hadoop.apache.org
Received: (qmail 13416 invoked by uid 99); 19 Jun 2013 07:15:20 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 19 Jun 2013 07:15:20 +0000
Date: Wed, 19 Jun 2013 07:15:20 +0000 (UTC)
From: "Kai Zheng (JIRA)" <jira@apache.org>
To: common-issues@hadoop.apache.org
Message-ID: <JIRA.12653659.1371626101033.138854.1371626120651@arcas>
In-Reply-To: <JIRA.12653659.1371626101033@arcas>
References: <JIRA.12653659.1371626101033@arcas>
Subject: [jira] [Created] (HADOOP-9653) Token validation and transmission
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394

Kai Zheng created HADOOP-9653:
---------------------------------

             Summary: Token validation and transmission
                 Key: HADOOP-9653
                 URL: https://issues.apache.org/jira/browse/HADOOP-9653
             Project: Hadoop Common
          Issue Type: Sub-task
          Components: security
            Reporter: Kai Zheng
            Assignee: Kai Zheng


HADOOP-9392 proposes to have customizable token authenticator for services to implement the TokenAuthn method and it was thought supporting pluggable token validation is a significant feature itself so it serves to be addressed in a separate JIRA. It will also consider how to securely transmit token in Hadoop RPC in a way the defends against all of the classical attacks. Note the authentication negotiation and wrapping of Hadoop RPC should be backwards compatible and interoperable with existing deployments, so therefore be SASL based.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira