[
https://issues.apache.org/jira/browse/HDDS-8132?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17714750#comment-17714750
]
Maksim Myskov commented on HDDS-8132:
-------------------------------------
I added API spec for the suggested endpoint to the document
> Secure S3 keys management
> -------------------------
>
> Key: HDDS-8132
> URL: https://issues.apache.org/jira/browse/HDDS-8132
> Project: Apache Ozone
> Issue Type: Improvement
> Reporter: Maksim Myskov
> Assignee: Maksim Myskov
> Priority: Major
> Labels: pull-request-available
> Attachments: Secure S3 keys management.pdf
>
>
> While attempting to get Ozone to production, we found several security flaws
> regarding S3 auth.
> Some of them we have already done (HDDS-7191, HDDS-7815), some of them are in
> progress (HDDS-8050,HDDS-7814), and some are to be implemented.
> This Jira has several purposes:
> # To be an umbrella Jira for work regarding improving S3 security
> # To share our vision regarding S3 security
> I attached a design document that describes all the security flaws we have
> found. Eliminating them will drastically increase Ozone S3 security.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
