[jira] [Updated] (STORM-348) (Security) Netty SASL Authentication

Raghavendra Nandagopal (JIRA) Wed, 30 Jul 2014 11:43:38 -0700

     [ 
https://issues.apache.org/jira/browse/STORM-348?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Raghavendra Nandagopal updated STORM-348:
-----------------------------------------

    Attachment: Storm-Netty Authentication Updated.pdf

I have updated the document that has the latest design and implementation 
details.

> (Security) Netty SASL Authentication
> ------------------------------------
>
>                 Key: STORM-348
>                 URL: https://issues.apache.org/jira/browse/STORM-348
>             Project: Apache Storm (Incubating)
>          Issue Type: Bug
>            Reporter: Robert Joseph Evans
>            Assignee: Raghavendra Nandagopal
>              Labels: security
>             Fix For: feature-security
>
>         Attachments: Storm-Netty Authentication Updated.pdf, Storm-Netty 
> Authentication.pdf
>
>
> Currently The Netty transport does no authentication at all.  You can encrypt 
> the tuples being sent, but that is a huge performance hit for many cases that 
> do not need it.  We should support simple SASL authentication when Netty 
> first connects to an external process.  We probably want to use something 
> similar to what we do for ZK, and generate a random secret for each topology.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

[jira] [Updated] (STORM-348) (Security) Netty SASL Authentication

Reply via email to