You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by Apache Wiki <wi...@apache.org> on 2011/11/11 21:23:22 UTC
[Cassandra Wiki] Update of "InternodeEncryption" by DavidAllsopp
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Cassandra Wiki" for change notification.
The "InternodeEncryption" page has been changed by DavidAllsopp:
http://wiki.apache.org/cassandra/InternodeEncryption
New page:
Inter-node encryption uses standard TLS/SSL to authenticate and encrypt messages between nodes, to preotect data in transit between nodes, and to prevent unauthorized access to/control of nodes.
Encryption can be applied to all inter-node messages, or just messages crossing from one Datacenter to another.
This page needs fleshing out... skeleton instructions from https://issues.apache.org/jira/browse/CASSANDRA-3051 are:
1. follow the steps for generating a keystore and a trust store here: http://download.oracle.com/javase/6/docs/technotes/guides/security/jsse/JSSERefGuide.html#CreateKeystore
2. plug those files into encryption_options in cassandra.yaml
3. make sure encryption_options.internode_encryption = all in the yaml.
----
See also SimpleAuthenticator for details of the authentication of Thrift clients (rather than between nodes).