[
https://issues.apache.org/jira/browse/ORC-252?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16206729#comment-16206729
]
Owen O'Malley commented on ORC-252:
-----------------------------------
1. The first version will only have AES/CTR in 128 or 256 bit. We can add other
encryption algorithms later, although we need most of the properties that are
unique to CTR. (Note that GCM is a subcase of CTR with a secure checksum
added.) In particular, the properties that we need are:
* No padding added to the stream.
* The reader can seek within the stream with an O(1) cost.
2.1 The printKey currently is using a hard coded iv of 0x0, which was mostly
for validating that the shim was working with the Ranger KMS. It does provide
information about the length of the key and to ensure the key is unique.
2.2 The keytool is just for diagnostics. We should probably add an option to
control the iv, but tools should be using the shim directly and not the tool.
> Add support for Key Management Servers (kms) to HadoopShims
> -----------------------------------------------------------
>
> Key: ORC-252
> URL: https://issues.apache.org/jira/browse/ORC-252
> Project: ORC
> Issue Type: Sub-task
> Reporter: Owen O'Malley
> Assignee: Owen O'Malley
>
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
