Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

LUKS on HDFS

Labels:
avatar
author-rank mike_garris
New Contributor

Created ‎11-08-2016 03:57 PM

We had an issue come up where we can't use Ranger for encryption on HDFS and the question is can we use LUKS encryption instead?

2,951 Views
0 Kudos
0
1 ACCEPTED SOLUTION

avatar
author-rank mthiele1
Contributor

Created ‎11-08-2016 07:16 PM

@Mike Garris Yes you can use LUKS as disk level encryption. This will encrypted the data blocks at the Linux level. This will not encrypted the data at the HDFS filesystem level. Many people have easily and successfully deployed HDFS with LUKS encrypted disk. The preference would to install and configure Linux and LUKS at the same time and then just install HDFS after as you would with a normal HDP install.

View solution in original post

2,633 Views
0 Kudos
0
4 REPLIES 4

avatar
author-rank bhoomireddy_vij
Rising Star

Created ‎11-08-2016 04:22 PM

@Mike Garris

Hi,

LUKS is a disk level encryption and hence is independent of the encryption supported by HDFS. Please see the link below to have an overview of the various levels of encryptions and where TDE sits.

https://hadoop.apache.org/docs/r2.7.2/hadoop-project-dist/hadoop-hdfs/TransparentEncryption.html

Hope that answers your query.

2,633 Views
0 Kudos

avatar
author-rank mike_garris
New Contributor

Created ‎11-08-2016 05:11 PM

But this still relies on a backing KMS correct? Since we can't use Ranger, is there another method?

2,633 Views
0 Kudos

avatar
author-rank mthiele1
Contributor

Created ‎11-08-2016 07:16 PM

@Mike Garris Yes you can use LUKS as disk level encryption. This will encrypted the data blocks at the Linux level. This will not encrypted the data at the HDFS filesystem level. Many people have easily and successfully deployed HDFS with LUKS encrypted disk. The preference would to install and configure Linux and LUKS at the same time and then just install HDFS after as you would with a normal HDP install.

2,634 Views
0 Kudos
0

avatar
author-rank mike_garris
New Contributor

Created ‎11-08-2016 07:24 PM

Excellent.

2,633 Views
0 Kudos
Announcements
What's New @ Cloudera
[RELEASED] Cloudera Streaming Analytics - Kubernetes Operato...
What's New @ Cloudera
[RELEASED] Cloudera Streams Messaging - Kubernetes Operator ...
Community Announcements
February 2025 Community Highlights
What's New @ Cloudera
3 Benefits of External IDE Connectivity, Now Available in Cl...
What's New @ Cloudera
Performance comparison of Spark3 on YARN with S3 Standard VS...
View More Announcements