hadoop-mapreduce-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Benoy Antony (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (MAPREDUCE-4553) Key Protection : Implement KeyProvider to read key from a WebService Based KeyStore
Date Mon, 18 Feb 2013 20:21:13 GMT

     [ https://issues.apache.org/jira/browse/MAPREDUCE-4553?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Benoy Antony updated MAPREDUCE-4553:
------------------------------------

    Description: 
Normally keys have to be stored in a central location using custom key management system.
 organizations can implement KeyProvider to integrate their custom key management system to
Hadoop. This interface is specified in MAPREDUCE-4550

Optionally , developers can use Safe to integrate custom key management system with Hadoop.

Safe is an open source web service based keystore to securely store secret keys and passwords.

Safe authenticates the user using SPNego, checks whether the user is authorized to read the
secret and returns the secret. 
It is easy to plug in different mechanisms for authentication,authorization and Key storage.

Safe is kept as a separate open source project at (http://benoyantony.github.com/safe/)

The hadoop proxy to safe is added as a contrib project -  hadoop-safe. 


  was:
Normally keys have to be stored in a central location suing custom key management system.
 organizations can implement KeyProvider to integrate their custom key management system to
Hadoop. This interface is specified in MAPREDUCE-4550

Optionally , developers can use Safe to integrate custom key management system with Hadoop.

Safe is an open source web service based keystore to securely store secret keys and passwords.

Safe authenticates the user using SPNego, checks whether the user is authorized to read the
secret and returns the secret. 
It is easy to plug in different mechanisms for authentication,authorization and Key storage.

Safe is kept as a separate open source project at (http://benoyantony.github.com/safe/)

The hadoop proxy to safe is added as a contrib project -  hadoop-safe. 


    
> Key Protection :  Implement KeyProvider to read key from a WebService Based KeyStore
> ------------------------------------------------------------------------------------
>
>                 Key: MAPREDUCE-4553
>                 URL: https://issues.apache.org/jira/browse/MAPREDUCE-4553
>             Project: Hadoop Map/Reduce
>          Issue Type: Sub-task
>          Components: job submission, security
>            Reporter: Benoy Antony
>            Assignee: Benoy Antony
>         Attachments: MR_4553_1_1.patch, MR_4553_trunk.patch
>
>
> Normally keys have to be stored in a central location using custom key management system.
 organizations can implement KeyProvider to integrate their custom key management system to
Hadoop. This interface is specified in MAPREDUCE-4550
> Optionally , developers can use Safe to integrate custom key management system with Hadoop.

> Safe is an open source web service based keystore to securely store secret keys and passwords.

> Safe authenticates the user using SPNego, checks whether the user is authorized to read
the secret and returns the secret. 
> It is easy to plug in different mechanisms for authentication,authorization and Key storage.

> Safe is kept as a separate open source project at (http://benoyantony.github.com/safe/)
> The hadoop proxy to safe is added as a contrib project -  hadoop-safe. 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message