[Lustre-devel] security: rpc message vs bulk data
James Hughes
James.Hughes at Sun.COM
Fri Aug 8 07:25:36 PDT 2008
On Wed, 2008-08-06 at 16:48 -0600, Peter Braam wrote:
> Of course the CMU research about NASD concluded the same 10-15 years
> ago -
> you need a different protocol here, calling it ad-hoc is not so
> positive,
> calling it the NASD protocol sounds rather nice.
I am not following the thread here.
The existing implementation leverages off of kerberos in the client
machine and does not leverage the NASD style ticket granting with
versioning that the CMU papers advocated. Going to the NASD protocol is
OK, but that means either abandoning Kerberos or adding Kerberos ticket
honoring to the NASD versioned ticketing. This is doable, but not
trivial.
Can you send pointers to the relevant NASD security papers so that we
can have a firm set of terminology to discuss this with?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lustre.org/pipermail/lustre-devel-lustre.org/attachments/20080808/484084ff/attachment.htm>
More information about the lustre-devel
mailing list