[ https://issues.apache.org/jira/browse/HDFS-13180?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16374953#comment-16374953
]
Konstantin Shvachko commented on HDFS-13180:
--------------------------------------------
??The main difference between HDFS’s block tokens and HDSL’s block tokens is the shift
to using public-private key pairs instead of a shared secret. The end user will experience
no difference in the security model.??
If public-private key replaces a current use of secrets for block tokens how will the key
management be handled? Does it require a KMS service in addition to Kerberos?
> Implement security for Hadoop Distributed Storage Layer
> --------------------------------------------------------
>
> Key: HDFS-13180
> URL: https://issues.apache.org/jira/browse/HDFS-13180
> Project: Hadoop HDFS
> Issue Type: New Feature
> Components: hdfs, hdfs-client, ozone
> Reporter: Anu Engineer
> Assignee: Anu Engineer
> Priority: Major
> Attachments: HadoopStorageLayerSecurity.pdf
>
>
> In HDFS-7240, we have created a scalable block layer that facilitates separation of namespace
and block layer. Hadoop Distributed Storage Layer (HDSL) allows us to scale HDFS(HDFS-10419)
and as well as create ozone (HDFS-13074).
> This JIRA is an umbrella JIRA that tracks the security-related work items for Hadoop
Distributed Storage Layer.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: hdfs-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-help@hadoop.apache.org
|