Konstantin Shvachko commented on HDFS-13180:

??The main difference between HDFS’s block tokens and HDSL’s block tokens is 
the shift to using public-private key pairs instead of a shared secret. The end 
user will experience no difference in the security model.??
If public-private key replaces a current use of secrets for block tokens how 
will the key management be handled? Does it require a KMS service in addition 
to Kerberos?

> Implement security for Hadoop Distributed Storage Layer 
> --------------------------------------------------------
>                 Key: HDFS-13180
>                 URL: https://issues.apache.org/jira/browse/HDFS-13180
>             Project: Hadoop HDFS
>          Issue Type: New Feature
>          Components: hdfs, hdfs-client, ozone
>            Reporter: Anu Engineer
>            Assignee: Anu Engineer
>            Priority: Major
>         Attachments: HadoopStorageLayerSecurity.pdf
> In HDFS-7240, we have created a scalable block layer that facilitates 
> separation of namespace and block layer.  Hadoop Distributed Storage Layer 
> (HDSL) allows us to scale HDFS(HDFS-10419) and as well as create ozone 
> (HDFS-13074).
> This JIRA is an umbrella JIRA that tracks the security-related work items for 
> Hadoop Distributed Storage Layer.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org

Reply via email to