Session Details

Securing Kafka at Paypal with 500 Billion Messages a Day  

Level :
Date :
9:15 AM Sunday
Room :
Shoot The Breeze
Interested : (-) - Registered : (-)


This session will talk about multiple fields around Kafka security which contains 4 parts: Securing Kafka, Securing Zookeeper, Quotas and Kafka Performance.

In Securing Kafka part, we are going to talk about Securing Admin Operations, Securing Client Access, Authentication which includes SASL, GSSAPI, PLAIN and SSL with mutual-auth, Certificate Management and customized KeyStore and TrustStore loader in Kafka client lib, ACLs on cluster, topic and group level.

Securing Zookeeper part will include Quorum security and broker to zookeeper security.

Quotas on User level and Topic level

In Kafka Performance part, we will talk about SSL/Non-SSL performance comparison, Java 8/9 performance, Kernel TLS with Openssl performance and the Client Tuning to improve the performance.

The Speaker(s)


Thomas Zhou

Thomas Zhou is a Software Engineer at PayPal, 2-year experience at Kafka Team. Worked on multiple fields around Kafka such as Kafka Security, High Availabilty Monitoring System for large scale Kafka Clusters. Thomas is also a good cook and game enthusiast.


Maulin Vasavada is a software developer and an architect on the Kafka team at PayPal, building a suite of components for Kafka as a service. He has strong experience building large-scale financial systems, shipping and logistics software, and software release management systems. Previously, he worked for eBay and as a consultant for Sun Microsystems.

Sanat Mastan Kumar Yelchuri

I am working at PayPal As Member of Technical Staff, We manage Kafka Infrastructure at PayPal at a scale of 500 billion messages per day with 1000 brokers across 50 clusters.
  • Not Interested
  • Interested
  • Attending