[HBASE-16633] Optimize HBase RPC Encryption Performance - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Duplicate
Affects Version/s: None
Fix Version/s: None
Component/s: security
Labels:
None

Description

Similar to HADOOP-10768, when HBase RPC encryption is enabled by setting hbase.rpc.protection to privacy, it does not use AES-NI acceleration by default.

We have implemented a workaround for HBase to use accelerated encryption that can be shown to improve performance, see https://rayokota.wordpress.com/2016/09/13/adventures-in-hardening-hbase/. I will attach a patch of the changes for our workaround, which borrows heavily from the patch for HADOOP-10768, but I'll leave it to the HBase security experts as to what is the best approach.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HBASE-16633.master.001.patch
14/Sep/16 23:04
86 kB
Robert Yokota

Issue Links

is duplicated by

HBASE-16632 Optimize HBase RPC Encryption Performance

Resolved

is related to

HBASE-16414 Improve performance for RPC encryption with Apache Common Crypto

Resolved

HDFS-6606 Optimize HDFS Encrypted Transport performance

Closed

HADOOP-10768 Optimize Hadoop RPC encryption performance

Patch Available

Activity

People

Assignee:: Unassigned

Reporter:: Robert Yokota

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 14/Sep/16 22:50

Updated:: 30/Aug/17 21:41

Resolved:: 30/Aug/17 21:41