Uploaded image for project: 'HPCC'
  1. HPCC
  2. HPCC-16080

Restrict access to files to signed code

    XMLWordPrintable

    Details

    • Compatibility:
      Minor

      Description

      Restricting access to files to signed code is method to improve security by limiting code that can read, write or have full access to a given file.

      This is a ticket is discusses this feature in more detail:

      • Would restricting access to files be a useful?
      • What level of sophistication would be required?
        1. Sufficient to simple restrict all access to signed code only?
        2. Access restriction to specified files only?
        3. Different gpg signatures to access different files?
        4. Ability to specify Read access only or full access?
      • How would superfiles be treated?
        1. If superfile access is restricted, can individual component parts be accessed?
        2. If restriction is specified for an individual part of a superfile, would that restriction need to propogate to the super file
        3. Where would the restriction be enabled/specified? Dali?
        4. How would access restriction be maintained when accessed outside Thor: for example, through EclWatch, file spraying/despraying, various std.File operations?
      • If signed file access restriction was available, how likely is it to be used?

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                shamser Shamser Ahmed
                Reporter:
                shamser Shamser Ahmed
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: