[jira] [Commented] (HADOOP-10150) Hadoop cryptographic file system

2014-03-24 Thread Avik Dey (JIRA) 

[ 
https://issues.apache.org/jira/browse/HADOOP-10150?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13946037#comment-13946037
 ] 

Avik Dey commented on HADOOP-10150:
---

[~tucu00] there are two patches posted by [~hitliuyi]. if you apply the xattrs 
patch first, the cfs patch should then apply cleanly:
https://issues.apache.org/jira/secure/attachment/12636026/extended%20information%20based%20on%20INode%20feature.patch

in the posted cfs patch you will see there is no need to change HDFS URI e.g.. 
i thought that was in the latest doc, but guess not. anyway let me know if you 
are still unable to apply the patches, that i think may help clear up a few of 
the questions you have posted. 

> Hadoop cryptographic file system
> 
>
> Key: HADOOP-10150
> URL: https://issues.apache.org/jira/browse/HADOOP-10150
> Project: Hadoop Common
>  Issue Type: New Feature
>  Components: security
>Affects Versions: 3.0.0
>Reporter: Yi Liu
>Assignee: Yi Liu
>  Labels: rhino
> Fix For: 3.0.0
>
> Attachments: CryptographicFileSystem.patch, HADOOP cryptographic file 
> system-V2.docx, HADOOP cryptographic file system.pdf, cfs.patch, extended 
> information based on INode feature.patch
>
>
> There is an increasing need for securing data when Hadoop customers use 
> various upper layer applications, such as Map-Reduce, Hive, Pig, HBase and so 
> on.
> HADOOP CFS (HADOOP Cryptographic File System) is used to secure data, based 
> on HADOOP “FilterFileSystem” decorating DFS or other file systems, and 
> transparent to upper layer applications. It’s configurable, scalable and fast.
> High level requirements:
> 1.Transparent to and no modification required for upper layer 
> applications.
> 2.“Seek”, “PositionedReadable” are supported for input stream of CFS if 
> the wrapped file system supports them.
> 3.Very high performance for encryption and decryption, they will not 
> become bottleneck.
> 4.Can decorate HDFS and all other file systems in Hadoop, and will not 
> modify existing structure of file system, such as namenode and datanode 
> structure if the wrapped file system is HDFS.
> 5.Admin can configure encryption policies, such as which directory will 
> be encrypted.
> 6.A robust key management framework.
> 7.Support Pread and append operations if the wrapped file system supports 
> them.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

[jira] [Commented] (HADOOP-9671) Improve Hadoop security - Use cases

2013-06-25 Thread Avik Dey (JIRA) 

[ 
https://issues.apache.org/jira/browse/HADOOP-9671?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13693637#comment-13693637
 ] 

Avik Dey commented on HADOOP-9671:
--

I was on the call as well. My recollection mirrors Andrew's summary above. Did 
something change since the call that has not been communicated to all 
participants on the call?

> Improve Hadoop security - Use cases
> ---
>
> Key: HADOOP-9671
> URL: https://issues.apache.org/jira/browse/HADOOP-9671
> Project: Hadoop Common
>  Issue Type: Improvement
>Reporter: Sanjay Radia
>


--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira