Benoy Antony created MAPREDUCE-4553:
---------------------------------------
Summary: Key Protection : Implement KeyProvider to read key from
a WebService Based KeyStore
Key: MAPREDUCE-4553
URL: https://issues.apache.org/jira/browse/MAPREDUCE-4553
Project: Hadoop Map/Reduce
Issue Type: Sub-task
Components: job submission, security
Reporter: Benoy Antony
Assignee: Benoy Antony
Normally keys have to be stored in a central location suing custom key
management system. organizations can implement KeyProvider to integrate their
custom key management system to Hadoop. This interface is specified in
MAPREDUCE-4550
Optionally , developers can use Safe to integrate custom key management system
with Hadoop.
Safe is an open source web service based keystore to securely store secret keys
and passwords.
Safe authenticates the user using SPNego, checks whether the user is authorized
to read the secret and returns the secret.
It is easy to plug in different mechanisms for authentication,authorization and
Key storage.
Safe is kept as a separate open source project at
(http://benoyantony.github.com/safe/)
The hadoop proxy to safe is added as a contrib project - hadoop-safe.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
