Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

HDFS encryprion at rest

Labels:
priyankaajindal
Explorer

Created ‎02-11-2019 07:02 AM

Hi

I am going through how to encrypt data at rest on HDFS https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.5/bk_security/content/ch_hdp-security-guide-h....

I have one doubt here:

As while reading the file from HDFS, the namenode passes the EDEK to the client. The client then passes the EEDK to KMS for getting DEK and then gets the blocks of that file from data node and decrypt them using DEK.

So it can be possible that in between somebody sniffs and gets the DEK, which is coming from KMS. And then also sniffs the data blocks coming from data node. Then both can be used to decrypt data by Man in the middle. So how is this taken care of? What type of communication is b/w:

1. KMS and the client.

2. Namenode and the KMS.

so that no one in between can compromise the keys?

779 Views
0 Kudos
3 REPLIES 3

Shelton
Mentor

Created on ‎02-11-2019 08:18 AM - edited ‎08-17-2019 02:36 PM

@Priyanka
In a nutshell, communication in cases 1 and 2 are encrypted as depicted in the below architecture, I would encourage you to read Transparent Data encryption document have a better understanding.

HDFS data at rest encryption implements end-to-end encryption of data read from and written to HDFS. End-to-end encryption means that data is encrypted and decrypted only by the client. HDFS does not have access to unencrypted data or keys.


103448-kms.png

HTH

717 Views
0 Kudos

priyankaajindal
Explorer

Created ‎02-11-2019 09:04 AM

@Geoffrey Shelton Okot Thanks for the reply. I have gone through the document mentioned above. But i could not understand how the cummunication b/w client and KMS and namenode and KMS is made secure. Could you please help with that.

717 Views
0 Kudos

Shelton
Mentor

Created ‎02-12-2019 07:12 PM

@Priyanka

To ensure security you will need SSL and Kerberos, without the latter you don't have any authentication, hence no real security. Even if you encrypt the data, there's nothing to stop anyone talking to the cluster claiming to be the administrative user hence with a possible hack.

HTH

717 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Community Announcements
March 2023 Community Highlights
What's New @ Cloudera
Cloudera DataFlow Designer for self-service data flow development is now generally available to all CDP Public Cloud customers
What's New @ Cloudera
Cloudera Operational Database (COD) UI provides the JWT configuration details to connect to your HBase client
What's New @ Cloudera
Cloudera Operational Database (COD) UI allows storage type selection when creating an operational database
What's New @ Cloudera
Release of Cloudera Streaming Analytics (CSA) 1.9.0 for CDP 7.1.7 SP2 & CDP 7.1.8
View More Announcements