This session will talk about multiple fields around Kafka security which contains 4 parts: Securing Kafka, Securing Zookeeper, Quotas and Kafka Performance.
In Securing Kafka part, we are going to talk about Securing Admin Operations, Securing Client Access, Authentication which includes SASL, GSSAPI, PLAIN and SSL with mutual-auth, Certificate Management and customized KeyStore and TrustStore loader in Kafka client lib, ACLs on cluster, topic and group level.
Securing Zookeeper part will include Quorum security and broker to zookeeper security.
Quotas on User level and Topic level
In Kafka Performance part, we will talk about SSL/Non-SSL performance comparison, Java 8/9 performance, Kernel TLS with Openssl performance and the Client Tuning to improve the performance.
Thomas Zhou is a Software Engineer at PayPal Kafka Team. Worked on multiple fields around Kafka such as Kafka Security, High Availabilty Monitoring System for large scale Kafka Clusters. Thomas is also a good cook and game enthusiast.
Maulin Vasavada is a software developer and an architect on the Kafka team at PayPal, building a suite of components for Kafka as a service. He has strong experience building large-scale financial systems, shipping and logistics software, and software release management systems. Previously, he worked for eBay and as a consultant for Sun Microsystems.
I am working at PayPal As Member of Technical Staff, We manage Kafka Infrastructure at PayPal at a scale of 500 billion messages per day with 1000 brokers across 50 clusters.