You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ozone.apache.org by "Attila Doroszlai (Jira)" <ji...@apache.org> on 2023/05/20 07:15:00 UTC
[jira] [Commented] (HDDS-8132) Secure S3 keys management
[ https://issues.apache.org/jira/browse/HDDS-8132?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17724491#comment-17724491 ]
Attila Doroszlai commented on HDDS-8132:
----------------------------------------
Design doc is [merged|https://github.com/apache/ozone/commit/17ecc58e3c17ff132a31029dc53b4a361362418a] to {{master}} branch. Leaving open because it's also the parent of implementation sub-tasks.
> Secure S3 keys management
> -------------------------
>
> Key: HDDS-8132
> URL: https://issues.apache.org/jira/browse/HDDS-8132
> Project: Apache Ozone
> Issue Type: Improvement
> Reporter: Maksim Myskov
> Assignee: Maksim Myskov
> Priority: Major
> Labels: pull-request-available
> Attachments: Secure S3 keys management.pdf
>
>
> While attempting to get Ozone to production, we found several security flaws regarding S3 auth.
> Some of them we have already done (HDDS-7191, HDDS-7815), some of them are in progress (HDDS-8050,HDDS-7814), and some are to be implemented.
> This Jira has several purposes:
> # To be an umbrella Jira for work regarding improving S3 security
> # To share our vision regarding S3 security
> I attached a design document that describes all the security flaws we have found. Eliminating them will drastically increase Ozone S3 security.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@ozone.apache.org
For additional commands, e-mail: issues-help@ozone.apache.org