Research on Hadoop Identity Authentication Based on Improved Kerberos Protocol

This paper researches the authentication mechanism of Kerberos protocol under HDFS, and points out the problems that identity authentication mechanism of Kerberos protocol faced in HDFS cluster environment: time synchronization, KDC security, dictionary attacks and denial mechanism. Aiming at these...

Full description

Saved in:
Bibliographic Details
Published inInternational Journal of Security and Its Applications Vol. 9; no. 11; pp. 429 - 438
Main Authors Hu, Daming, Chen, Deyun, Zhang, Yuanxu, Pei, Shujun
Format Journal Article
LanguageEnglish
Published 30.11.2015
Subjects
HDFS
Kerberos
Digital Signature
Public Key Encryption
Identity Authentication
Online AccessGet full text

Cover

More Information
Summary:This paper researches the authentication mechanism of Kerberos protocol under HDFS, and points out the problems that identity authentication mechanism of Kerberos protocol faced in HDFS cluster environment: time synchronization, KDC security, dictionary attacks and denial mechanism. Aiming at these security problems, firstly, this paper provides an overview of the authentication process of the current Kerberos protocol under HDFS cluster environment; secondly, it modifies Kerberos protocol by using public key encryption and data signature mechanism; lastly, it provides the authentication process of improved Kerberos protocol in HDFS environment. Comprehensive analysis shows that both safety and time efficiency of the improved Kerberos protocol are improved compared with the existing identity authentication mechanism. It provides a more reliable and efficient identity authentication solution for HDFS cluster.
ISSN:1738-9976
1738-9976
DOI:10.14257/ijsia.2015.9.11.39