SHANDONG SCIENCE ›› 2014, Vol. 27 ›› Issue (5): 33-41.doi: 10.3976/j.issn.1002-4026.2014.05.007

• Article • Previous Articles     Next Articles

PKI based HDFS authentication and secure transmission mechanism

LI Yan-gai, ZHAO Hua-wei   

  1. 1. School of Computer Science and Technology, Shandong University of Finance and Economics, Jinan 250014,China; 2. Shandong Zhongfu Information Industry Co.,Ltd., Jinan 250101, China
  • Received:2014-05-21 Published:2014-10-20 Online:2014-10-20

PDF (PC)

Like

Cited

2

Abstract: We detailedly analyze existing Kerberos scheme to solve the authentication and secure transmission in the process of file service of Hadoop Distributed File System(HDFS), a core subproject of Hadoop. We then generalize the negatives of its security and efficiency. We further apply PKI based digital certificate authentication and digital envelop based AES symmetric encryption to the security mechanism of HDFS. Analysis shows that the approach can provide a safer and more efficient solution for HDFS service, as compared with Kerberos.

Key words: Kerberos, PKI, Hadoop, security of HDFS

CLC Number: 

  • TP393.08

Open Access This article is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License (CC BY-NC 4.0), which permits third parties to freely share (i.e., copy and redistribute the material in any medium or format) and adapt (i.e., remix, transform, or build upon the material) the articles published in this journal, provided that appropriate credit is given, a link to the license is provided, and any changes made are indicated. The material may not be used for commercial purposes. For details of the CC BY-NC 4.0 license, please visit: https://creativecommons.org/licenses/by-nc/4.0

鲁ICP备10205608号
Website Copyright © Editorial Office of Shandong Science
Tel: 0531-82605310 E-mail: xuxy@qlu.edu.cn
Powered by Beijing Magtech Co. Ltd