In our current data driven world, the ability to store massive amounts of data is inevitable for not just large enterprises. As the legislation evolves, there are more and more requirements against distributed storage systems, but security has been there since the beginning, just as in Apache Ozone. We have different layers where security considerations have to play a central role. Data storage, data access, data transfer, or encryption just to name a few. All layers have their own specialities, and an already established frame for solutions defined mainly by already mature systems.