Thanks for the inputs Owen. On 1/27/16, 11:31 AM, "Owen O'Malley" <omal...@apache.org> wrote:
>On Wed, Jan 27, 2016 at 9:59 AM, Gangumalla, Uma ><uma.ganguma...@intel.com> >wrote: > >> I think Chimera goal is to enhance even for other use cases. > > >Naturally. > > >> For Hadoop, CTR mode should be enough today, > > >This isn't true. Hadoop should use better encryption for RPC and shuffle, >both of which should not use CTR. || Yes, I said later Hadoop could use other options too. > > >> I think separate module and >> independent release is good idea but I am not so strong on the point to >> keep under Hadoop. > > >I believe encryption is becoming a core part of Hadoop. I think that >moving >core components out of Hadoop is bad from a project management >perspective. >To put it another way, a bug in the encryption routines will likely become >a security problem that security@hadoop needs to hear about. I don't think >adding a separate project in the middle of that communication chain is a >good idea. The same applies to data corruption problems, and so on... || I agree on security related discussion we have separate one. Thanks for this point. > > >> It may be good to keep at generalized place(As in the >> discussion, we thought that place could be Apache Commons). > > >Apache Commons is a collection of *Java* projects, so Chimera as a >JNI-based library isn't a natural fit. Furthermore, Apache Commons doesn't >have its own security list so problems will go to the generic >secur...@apache.org. ||I see some projects including native stuff too. Example: Commons-daemon. ||But, yeah I noticed now Apache commons proper is indicating that for reusable Java sources. > >Why do you think that Apache Commons is a better home than Hadoop? > >.. Owen @ATM, Andrew, Chris, Yi do you want to comment on this proposal? Regards, Uma
