kafka-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joe Stein <joe.st...@stealth.ly>
Subject Re: Security in 0.8.2 beta
Date Wed, 12 Nov 2014 07:53:37 GMT
I know a few implements that do this "encrypt your messages with a PSK
between producers and consumers". One of them actually writes the
"encrypted <symmetric key>" on a different topic foreach downstream
consumer private key that can read the message. This way when you are
consuming you consume from two topics 1) the topic with the message (which
is encrypted) you want 2) the topic that you can use your private key
to decrypt (because your public key was used) the symmetric key and then
use that to decrypt the message (which you join from the two streams by the
uuid so each message has a different secrete key encrypted with your public
key).... The other ones I can't talk about =8^) but this one I mention is
interesting solution to this problem with Kafka I really like.

 Joe Stein
 Founder, Principal Consultant
 Big Data Open Source Security LLC
 Twitter: @allthingshadoop <http://www.twitter.com/allthingshadoop>

On Wed, Nov 12, 2014 at 2:41 AM, Mathias Herberts <
mathias.herberts@gmail.com> wrote:

> Simply encrypt your messages with a PSK between producers and consumers.
> On Nov 12, 2014 4:38 AM, "Kashyap Mhaisekar" <kashyap.m@gmail.com> wrote:
> > Hi,
> > Is there a way to secure the topics created in Kafka 0.8.2 beta? The need
> > is to ensure no one is asked to read data from the topic without
> > authorization.
> >
> > Regards
> > Kashyap
> >

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message