Recently I installed Ranger KMS (HDP 2.3) using Ambari 2.2. It appears to be working fine. Now I am trying to assess the ACLs and Policies that we need to put in place to secure the encryption keys handled by KMS.
I noticed that * Keys to each encryption zone is stored in table ranger_keystore * Master key is stored in ranger_masterkey *Question 1*: Does it mean that admin who has superuser privilege of the DB (such as posrgres for postgresql DB) have full access the entire keyset ? in other words, if the DB superuser account is compromised, the hacker has full access to all encryption keys used in the cluster *Question 2:* Is there any reference deployment practice guide that talks about such issues? Thanks Senthil
