liu wei created HDFS-17856:
------------------------------
Summary: 3des, as a symmetric encryption algorithm, is not secure
enough
Key: HDFS-17856
URL: https://issues.apache.org/jira/browse/HDFS-17856
Project: Hadoop HDFS
Issue Type: Improvement
Affects Versions: 3.4.1, 3.3.1
Environment: !image-2025-11-26-11-53-48-588.png!
Reporter: liu wei
Attachments: image-2025-11-26-11-51-54-326.png,
image-2025-11-26-11-53-48-588.png
The dfs.encrypt.data.transfer.algorithm can only be configured with 3des or
rc4. Even if dfs.encrypt.data.transfer.cipher.suites is configured with
AES/CTR/NoAdding, the 3des algorithm is still used for initial key exchange.
Does the community have any plans to completely eliminate the 3des algorithm,
as its security is not as good as AES?
!image-2025-11-26-11-51-54-326.png!
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
