You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@flink.apache.org by "Stephan Ewen (JIRA)" <ji...@apache.org> on 2018/05/07 19:56:01 UTC

[jira] [Created] (FLINK-9312) Perform mutual authentication during SSL handshakes

Stephan Ewen created FLINK-9312:
-----------------------------------

             Summary: Perform mutual authentication during SSL handshakes
                 Key: FLINK-9312
                 URL: https://issues.apache.org/jira/browse/FLINK-9312
             Project: Flink
          Issue Type: New Feature
          Components: Security
            Reporter: Stephan Ewen
             Fix For: 1.6.0


Currently, the Flink processes encrypted connections via SSL:

  - Data exchange TM - TM
  - RPC JM - TM
  - Blob Service JM - TM

However, the server side always accepts any client to build up the connection, meaning the connections are not strongly authenticated.

Activating SSL mutual authentication solves that - only processes that have the same certificate can connect.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)