Comment 5 for bug 1264302

The new option should also be able to set group permissions. In this way the nova user and the glance user could be the exclusive members of the group that owns the files created and permissions could be set to 0640.

SELinux experts should probably weigh in on this issue as well.