Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-15006

Encrypt S3A data client-side with Hadoop libraries & Hadoop KMS

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: fs/s3, kms
    • Labels:
      None

      Description

      This is for the proposal to introduce Client Side Encryption to S3 in such a way that it can leverage HDFS transparent encryption, use the Hadoop KMS to manage keys, use the `hdfs crypto` command line tools to manage encryption zones in the cloud, and enable distcp to copy from HDFS to S3 (and vice-versa) with data still encrypted.

        Attachments

        1. s3-cse-poc.patch
          10 kB
          Steve Moist
        2. S3-CSE Proposal.pdf
          160 kB
          Steve Moist

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                moist Steve Moist
              • Votes:
                0 Vote for this issue
                Watchers:
                7 Start watching this issue

                Dates

                • Created:
                  Updated: