Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-1567

Provide configurable encryption support for internode communication

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Fix Version/s: 0.8 beta 1
    • Component/s: None
    • Labels:
      None

      Description

      Provide the option to encrypt internode communication. The initial thought is to use JSSE (http://download.oracle.com/javase/6/docs/technotes/guides/security/jsse/JSSERefGuide.html) to wrap the existing ServerSocket & Sockets. This will only be an optional configuration and not enabled by default. The defaults would be TLS V1, RSA 1024-bit keys for handshake and SSL_RSA_WITH_RC4_128_MD5 as the cipher suite. Although this can be made configurable if the need arises.

        Attachments

        1. 1567-v4.patch
          31 kB
          Nirmal Ranganathan
        2. 1567-v3.patch
          33 kB
          Nirmal Ranganathan
        3. 0004-setReuseAddress-before-bind-and-docs.patch
          4 kB
          Gary Dusbabek
        4. 0002-Configurable-internode-encryption-option-V2.patch
          30 kB
          Nirmal Ranganathan
        5. 0003-Default-Key-and-Certificate-for-internode-SSL-V2.patch
          4 kB
          Nirmal Ranganathan
        6. 0002-Configurable-internode-encryption-option.patch
          24 kB
          Nirmal Ranganathan
        7. 0003-Default-Key-and-Certificate-for-internode-SSL.patch
          4 kB
          Nirmal Ranganathan

          Activity

            People

            • Assignee:
              rnirmal Nirmal Ranganathan
              Reporter:
              rnirmal Nirmal Ranganathan
              Reviewer:
              Stu Hood
            • Votes:
              1 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: