Return-Path: X-Original-To: apmail-hbase-issues-archive@www.apache.org Delivered-To: apmail-hbase-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 79A0E99AF for ; Mon, 18 Jun 2012 06:13:48 +0000 (UTC) Received: (qmail 56778 invoked by uid 500); 18 Jun 2012 06:13:48 -0000 Delivered-To: apmail-hbase-issues-archive@hbase.apache.org Received: (qmail 56531 invoked by uid 500); 18 Jun 2012 06:13:47 -0000 Mailing-List: contact issues-help@hbase.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list issues@hbase.apache.org Received: (qmail 56488 invoked by uid 99); 18 Jun 2012 06:13:47 -0000 Received: from issues-vm.apache.org (HELO issues-vm) (140.211.11.160) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 18 Jun 2012 06:13:47 +0000 Received: from isssues-vm.apache.org (localhost [127.0.0.1]) by issues-vm (Postfix) with ESMTP id DC106142865 for ; Mon, 18 Jun 2012 06:13:46 +0000 (UTC) Date: Mon, 18 Jun 2012 06:13:46 +0000 (UTC) From: "Laxman (JIRA)" To: issues@hbase.apache.org Message-ID: <301822455.23826.1340000026905.JavaMail.jiratomcat@issues-vm> In-Reply-To: <1104092684.21359.1339824642708.JavaMail.jiratomcat@issues-vm> Subject: [jira] [Commented] (HBASE-6222) Add per-KeyValue Security MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/HBASE-6222?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13393676#comment-13393676 ] Laxman commented on HBASE-6222: ------------------------------- Good to see lot of interest and discussion in this. I couldn't understand the above discussion completely. But, I've some basic questions. 1) Do we really have any known use-cases for KV based access control? 2) Does scalability affected badly for the users who needs at KV level access control? How about other approach of supporting access control through *HBase views*? If we want to restrict access for a CF/CQ and a set of rows to a user/group then create a view for that set and control access through view. It's just an idea based on my understanding of RDBMS (Oracle). Not really sure if this is really feasible in HBase. Please respond with use-cases and comments. > Add per-KeyValue Security > ------------------------- > > Key: HBASE-6222 > URL: https://issues.apache.org/jira/browse/HBASE-6222 > Project: HBase > Issue Type: New Feature > Components: security > Reporter: stack > > Saw an interesting article: http://www.fiercegovernmentit.com/story/sasc-accumulo-language-pro-open-source-say-proponents/2012-06-14 > "The Senate Armed Services Committee version of the fiscal 2013 national defense authorization act (S. 3254) would require DoD agencies to foreswear the Accumulo NoSQL database after Sept. 30, 2013, unless the DoD CIO certifies that there exists either no viable commercial open source database with security features comparable to [Accumulo] (such as the HBase or Cassandra databases)..." > Not sure what a 'commercial open source database' is, and I'm not sure whats going on in the article, but tra-la-la'ing, if we had per-KeyValue 'security' like Accumulo's, we might put ourselves in the running for federal contributions? -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira