[ https://issues.apache.org/jira/browse/HDFS-13180?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16374953#comment-16374953 ]
Konstantin Shvachko commented on HDFS-13180: -------------------------------------------- ??The main difference between HDFS’s block tokens and HDSL’s block tokens is the shift to using public-private key pairs instead of a shared secret. The end user will experience no difference in the security model.?? If public-private key replaces a current use of secrets for block tokens how will the key management be handled? Does it require a KMS service in addition to Kerberos? > Implement security for Hadoop Distributed Storage Layer > -------------------------------------------------------- > > Key: HDFS-13180 > URL: https://issues.apache.org/jira/browse/HDFS-13180 > Project: Hadoop HDFS > Issue Type: New Feature > Components: hdfs, hdfs-client, ozone > Reporter: Anu Engineer > Assignee: Anu Engineer > Priority: Major > Attachments: HadoopStorageLayerSecurity.pdf > > > In HDFS-7240, we have created a scalable block layer that facilitates > separation of namespace and block layer. Hadoop Distributed Storage Layer > (HDSL) allows us to scale HDFS(HDFS-10419) and as well as create ozone > (HDFS-13074). > This JIRA is an umbrella JIRA that tracks the security-related work items for > Hadoop Distributed Storage Layer. -- This message was sent by Atlassian JIRA (v7.6.3#76005) --------------------------------------------------------------------- To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org