Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-2239

Security: Need to be able to encrypt Hadoop socket connections

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 0.17.0
    • Component/s: None
    • Labels:
      None
    • Release Note:
      This patch adds a new FileSystem, HftpsFileSystem, that allows access to HDFS data over HTTPS.

      Description

      We need to be able to use hadoop over hostile networks, both internally and externally to the enterpise. While authentication prevents unauthorized access, encryption should be used to prevent such things as packet snooping across the wire. This means that hadoop client connections, distcp, etc, would use something such as SSL to protect the TCP/IP packets. Post-Kerberos, it would be useful to use something similar to NFS's krb5p option.

        Attachments

        1. 2239-3.patch
          15 kB
          Chris Douglas
        2. 2239-2.patch
          15 kB
          Chris Douglas
        3. 2239-1.patch
          15 kB
          Chris Douglas
        4. 2239-0.patch
          15 kB
          Chris Douglas

          Issue Links

            Activity

              People

              • Assignee:
                chris.douglas Chris Douglas
                Reporter:
                aw Allen Wittenauer
              • Votes:
                2 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: