Return-Path: 
 <common-issues-return-69287-apmail-hadoop-common-issues-archive=hadoop.apache.org@hadoop.apache.org>
X-Original-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Delivered-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 1227C11399
	for <apmail-hadoop-common-issues-archive@minotaur.apache.org>;
 Sun, 14 Sep 2014 17:55:35 +0000 (UTC)
Received: (qmail 58388 invoked by uid 500); 14 Sep 2014 17:55:34 -0000
Delivered-To: apmail-hadoop-common-issues-archive@hadoop.apache.org
Received: (qmail 58334 invoked by uid 500); 14 Sep 2014 17:55:34 -0000
Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:common-issues-help@hadoop.apache.org>
List-Unsubscribe: <mailto:common-issues-unsubscribe@hadoop.apache.org>
List-Post: <mailto:common-issues@hadoop.apache.org>
List-Id: <common-issues.hadoop.apache.org>
Reply-To: common-issues@hadoop.apache.org
Delivered-To: mailing list common-issues@hadoop.apache.org
Received: (qmail 58257 invoked by uid 99); 14 Sep 2014 17:55:34 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 14 Sep 2014 17:55:34 +0000
Date: Sun, 14 Sep 2014 17:55:34 +0000 (UTC)
From: "Allen Wittenauer (JIRA)" <jira@apache.org>
To: common-issues@hadoop.apache.org
Message-ID: <JIRA.12653659.1371626101000.30939.1410717334358@Atlassian.JIRA>
In-Reply-To: <JIRA.12653659.1371626101000@Atlassian.JIRA>
References: <JIRA.12653659.1371626101000@Atlassian.JIRA>
 <JIRA.12653659.1371626101033@arcas>
Subject: [jira] [Updated] (HADOOP-9653) Token validation and transmission
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


     [ https://issues.apache.org/jira/browse/HADOOP-9653?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Allen Wittenauer updated HADOOP-9653:
-------------------------------------
    Fix Version/s:     (was: 3.0.0)

> Token validation and transmission
> ---------------------------------
>
>                 Key: HADOOP-9653
>                 URL: https://issues.apache.org/jira/browse/HADOOP-9653
>             Project: Hadoop Common
>          Issue Type: Sub-task
>          Components: security
>            Reporter: Kai Zheng
>            Assignee: Kai Zheng
>              Labels: rhino
>
> HADOOP-9392 proposes to have customizable token authenticator for services to implement the TokenAuthn method and it was thought supporting pluggable token validation is a significant feature itself so it serves to be addressed in a separate JIRA. It will also consider how to securely transmit token in Hadoop RPC in a way the defends against all of the classical attacks. Note the authentication negotiation and wrapping of Hadoop RPC should be backwards compatible and interoperable with existing deployments, so therefore be SASL based.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)