Description
This is for the proposal to introduce Client Side Encryption to S3 in such a way that it can leverage HDFS transparent encryption, use the Hadoop KMS to manage keys, use the `hdfs crypto` command line tools to manage encryption zones in the cloud, and enable distcp to copy from HDFS to S3 (and vice-versa) with data still encrypted.
Attachments
Attachments
Issue Links
- is blocked by
-
HADOOP-15606 FSDataInputStream/FSInputStream to implement getFileLength()
- Open
- relates to
-
HADOOP-13887 Encrypt S3A data client-side with AWS SDK (S3-CSE)
- Resolved