[
https://issues.apache.org/jira/browse/HDFS-13180?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16374953#comment-16374953
]
Konstantin Shvachko commented on HDFS-13180:
--------------------------------------------
??The main difference between HDFS’s block tokens and HDSL’s block tokens is
the shift to using public-private key pairs instead of a shared secret. The end
user will experience no difference in the security model.??
If public-private key replaces a current use of secrets for block tokens how
will the key management be handled? Does it require a KMS service in addition
to Kerberos?
> Implement security for Hadoop Distributed Storage Layer
> --------------------------------------------------------
>
> Key: HDFS-13180
> URL: https://issues.apache.org/jira/browse/HDFS-13180
> Project: Hadoop HDFS
> Issue Type: New Feature
> Components: hdfs, hdfs-client, ozone
> Reporter: Anu Engineer
> Assignee: Anu Engineer
> Priority: Major
> Attachments: HadoopStorageLayerSecurity.pdf
>
>
> In HDFS-7240, we have created a scalable block layer that facilitates
> separation of namespace and block layer. Hadoop Distributed Storage Layer
> (HDSL) allows us to scale HDFS(HDFS-10419) and as well as create ozone
> (HDFS-13074).
> This JIRA is an umbrella JIRA that tracks the security-related work items for
> Hadoop Distributed Storage Layer.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org
