Cassandra
  1. Cassandra
  2. CASSANDRA-1567

Provide configurable encryption support for internode communication

    Details

    • Type: New Feature New Feature
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Fix Version/s: 0.8 beta 1
    • Component/s: Core
    • Labels:
      None

      Description

      Provide the option to encrypt internode communication. The initial thought is to use JSSE (http://download.oracle.com/javase/6/docs/technotes/guides/security/jsse/JSSERefGuide.html) to wrap the existing ServerSocket & Sockets. This will only be an optional configuration and not enabled by default. The defaults would be TLS V1, RSA 1024-bit keys for handshake and SSL_RSA_WITH_RC4_128_MD5 as the cipher suite. Although this can be made configurable if the need arises.

      1. 1567-v4.patch
        31 kB
        Nirmal Ranganathan
      2. 1567-v3.patch
        33 kB
        Nirmal Ranganathan
      3. 0004-setReuseAddress-before-bind-and-docs.patch
        4 kB
        Gary Dusbabek
      4. 0003-Default-Key-and-Certificate-for-internode-SSL-V2.patch
        4 kB
        Nirmal Ranganathan
      5. 0003-Default-Key-and-Certificate-for-internode-SSL.patch
        4 kB
        Nirmal Ranganathan
      6. 0002-Configurable-internode-encryption-option-V2.patch
        30 kB
        Nirmal Ranganathan
      7. 0002-Configurable-internode-encryption-option.patch
        24 kB
        Nirmal Ranganathan

        Activity

          People

          • Assignee:
            Nirmal Ranganathan
            Reporter:
            Nirmal Ranganathan
            Reviewer:
            Stu Hood
          • Votes:
            1 Vote for this issue
            Watchers:
            6 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development