You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ozone.apache.org by "Attila Doroszlai (Jira)" <ji...@apache.org> on 2023/05/20 07:15:00 UTC

[jira] [Commented] (HDDS-8132) Secure S3 keys management

    [ https://issues.apache.org/jira/browse/HDDS-8132?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17724491#comment-17724491 ] 

Attila Doroszlai commented on HDDS-8132:
----------------------------------------

Design doc is [merged|https://github.com/apache/ozone/commit/17ecc58e3c17ff132a31029dc53b4a361362418a] to {{master}} branch.  Leaving open because it's also the parent of implementation sub-tasks.

> Secure S3 keys management
> -------------------------
>
>                 Key: HDDS-8132
>                 URL: https://issues.apache.org/jira/browse/HDDS-8132
>             Project: Apache Ozone
>          Issue Type: Improvement
>            Reporter: Maksim Myskov
>            Assignee: Maksim Myskov
>            Priority: Major
>              Labels: pull-request-available
>         Attachments: Secure S3 keys management.pdf
>
>
> While attempting to get Ozone to production, we found several security flaws regarding S3 auth.
> Some of them we have already done (HDDS-7191, HDDS-7815), some of them are in progress (HDDS-8050,HDDS-7814), and some are to be implemented.
> This Jira has several purposes:
>  # To be an umbrella Jira for work regarding improving S3 security
>  # To share our vision regarding S3 security
> I attached a design document that describes all the security flaws we have found. Eliminating them will drastically increase Ozone S3 security.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@ozone.apache.org
For additional commands, e-mail: issues-help@ozone.apache.org