Uploaded image for project: 'Hadoop HDFS'
  1. Hadoop HDFS
  2. HDFS-17025

RBF: Support port based selective encryption on routers.

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • hdfs, rbf
    • None

    Description

      HDFS-13541 implemented based selective encryption in the Namenode. 

      This feature allows HDFS to selectively enforce encryption for both RPC (NameNode) and data transfer (DataNode).
With this feature enabled, NameNode can listen on multiple ports, and different ports can have different security 
configurations. Depending on which NameNode port clients connect to, the RPC calls and the following data transfer
will enforce security configuration corresponding to this NameNode port. This can help when there is requirement
to enforce different security policies depending on the location where the clients are connecting from.

      This ability for selective encryption should still be available to clients when they connect to routers instead of directly to the namenode.

      This implemented can leverage a lot of the code written for the Namenode selective port based encryption. A lot of the changes are in hadoop-common, eg. HDFS-13566.

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. HDFS-13541 NameNode Port based selective encryption

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              simbadzina Simbarashe Dzinamarira
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: