Hi,
My company compliance unit is asking whether ElasticSearch's java
communication protocol is secure, by which they mean encrypted.
I'm assuming that it isn't. Is there any way I can plugin some kind
of encryption into the protocol on clients and servers?
Best Regards,
David.
You mean SSL? Its not there, though should not be too difficult to add if
really needed, though it does slow things down...
On Fri, Oct 21, 2011 at 2:40 PM, davrob2 daviroberts@gmail.com wrote:
Hi,
My company compliance unit is asking whether Elasticsearch's java
communication protocol is secure, by which they mean encrypted.I'm assuming that it isn't. Is there any way I can plugin some kind
of encryption into the protocol on clients and servers?Best Regards,
David.
An approach I have used is to communicate over an ssh tunnel, a vpn
setup could work as well.
If you are looking to encrypt a search from say a website, you can
setup an ssl proxy, to protect the channel from the client to the ES
cluster.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.