You are viewing a plain text version of this content. The canonical link for it is here.
Posted to hdfs-dev@hadoop.apache.org by "zZtai (Jira)" <ji...@apache.org> on 2020/04/29 09:52:00 UTC
[jira] [Resolved] (HDFS-15284) Add SM4 encryption method for HDFS
[ https://issues.apache.org/jira/browse/HDFS-15284?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
zZtai resolved HDFS-15284.
--------------------------
Resolution: Duplicate
> Add SM4 encryption method for HDFS
> ----------------------------------
>
> Key: HDFS-15284
> URL: https://issues.apache.org/jira/browse/HDFS-15284
> Project: Hadoop HDFS
> Issue Type: New Feature
> Components: hdfs
> Affects Versions: 3.4.0
> Reporter: zZtai
> Priority: Major
>
> SM4 (formerly SMS4)is a block cipher used in the Chinese National Standard for Wireless LAN WAPI (Wired Authentication and Privacy Infrastructure). please see:
> https://en.wikipedia.org/wiki/SM4_(cipher)
> *patch to hadoop trunk branch*
> Use sm4 on hdfs as follows:
> *1.download Bouncy Castle Crypto APIs from bouncycastle.org*
> https://bouncycastle.org/download/bcprov-ext-jdk15on-165.jar
> *2.Configure JDK*
> Place bcprov-ext-jdk15on-165.jar in $JAVA_HOME/jre/lib/ext directory,
> add "security.provider.10=org.bouncycastle.jce.provider.BouncyCastleProvider" to $JAVA_HOME/jre/lib/security/java.security file
> *3.Configure Hadoop KMS*
> *4.test HDFS sm4*
> hadoop key create key1 -cipher 'SM4/CTR/NoPadding'
> hdfs dfs -mkdir /benchmarks
> hdfs crypto -createZone -keyName key1 -path /benchmarks
> *requires:*
> 1.openssl version >=1.1.1
> 2.configure Bouncy Castle Crypto on JDK
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: hdfs-dev-unsubscribe@hadoop.apache.org
For additional commands, e-mail: hdfs-dev-help@hadoop.apache.org