Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-2239

Security: Need to be able to encrypt Hadoop socket connections

VotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 0.17.0
    • None
    • None
    • This patch adds a new FileSystem, HftpsFileSystem, that allows access to HDFS data over HTTPS.

    Description

      We need to be able to use hadoop over hostile networks, both internally and externally to the enterpise. While authentication prevents unauthorized access, encryption should be used to prevent such things as packet snooping across the wire. This means that hadoop client connections, distcp, etc, would use something such as SSL to protect the TCP/IP packets. Post-Kerberos, it would be useful to use something similar to NFS's krb5p option.

      Attachments

        1. 2239-0.patch
          15 kB
          Christopher Douglas
        2. 2239-1.patch
          15 kB
          Christopher Douglas
        3. 2239-2.patch
          15 kB
          Christopher Douglas
        4. 2239-3.patch
          15 kB
          Christopher Douglas

        Issue Links

        is blocked by

        Task - A task that needs to be done. HADOOP-2981 Follow Apache process for getting ready to put crypto code in to project

        • Major - Major loss of function.
        • Closed

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            cdouglas Christopher Douglas
            aw Allen Wittenauer
            Votes:
            2 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment