Support Questions
Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Innovation Accelerator group hub.

Cryto algorithms used for HDFS encryption, SSL communication & Kerberos setup

Labels:
gvishal
Explorer

Created ‎04-05-2017 05:54 AM

Hello, Please help to understand the cryto algorithms used for :

1) HDFS encryption at rest

2) SSL/TLS communications

3) Kerberos

We have a HDP 2.5

Thanks,

Vishal.

720 Views
0 Kudos
Tags (2)
2 REPLIES 2

drussell
Guru

Created ‎04-24-2017 06:41 PM

Hi @Vishal Gupta the following crypto algorithms are used:

1) HDFS Encryption at rest uses AES/CTR/NoPadding as the cipher suite. The key size can be 128 or 256 bits.

2) The SSL/TLS question is a bit more difficult to answer as it depends on the individual components involved, however everything is covered in this chapter of our documentation:

http://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.0/bk_security/content/ch_hdp-security-guide-wi...

3) Kerberos itself is a protocol, I suggest you take a look at https://en.wikipedia.org/wiki/Kerberos_(protocol)

I hope that helps!

549 Views
0 Kudos

sashakhan150
New Contributor

Created ‎05-18-2019 08:01 AM

This is one of the best resources I have seen in a long. Looking for neo to eur

549 Views
0 Kudos
Don't have an account?
Register
Announcements
What's New @ Cloudera
PBJ Workbench Runtimes are now part of the Jupyter ecosystem
What's New @ Cloudera
Cloudera Streaming Analytics 7.2.15 for Public Cloud - New Features
What's New @ Cloudera
Cloudera Streams Messaging 7.2.15 for Public Cloud - New Features
What's New @ Cloudera
Cloudera Streaming Analytics 1.7.0 For Private Cloud - New Features
What's New @ Cloudera
Cloudera DataFlow for the Public Cloud introduces Inbound Connections and supports Apache NiFi 1.16
View More Announcements