安全认证（一）--- 概貌

安全特性一般包括加密、认证和鉴权。
hadoop的安全认证过程很复杂，但玩大数据的人，总要知道一些基本概念、业务框架和大致业务过程。
我的博文是来自其他高手总结，加上一些书籍摘要和个人理解，汇总而成，不为其他，只为方便自己查阅。若有写得不对的 ，请大家帮忙指正。
先澄清几个基本概念：
【关于JAAS和Java GSS-API】
（来自https://docs.oracle.com/javase/1.5.0/docs/guide/security/jgss/tutorials/index.html）
JAAS can be used for two purposes:
for authentication of users, to reliably and securely determine who is currently executing Java code, and
for authorization of users to ensure they have the access control rights (permissions) required to do security-sensitive operations.
Java GSS-API is used for securely exchanging messages between communicating applications. The Java GSS-API contains the Java bindings for the Generic Security Services Application Program Interface (GSS-API) defined in RFC 2853. GSS-AP