Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-15617

[SERVER] Document new server status metrics related to TLS

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major - P3
    • Resolution: Done
    • 6.2 Targeted
    • 6.2 Targeted
    • manual, Server
    • None
    • 5
    • Hide
      Added two new server status metrics:
      'metrics.network.totalIngressTLSConnections' - the cumulative number of ingress connections that used TLS
      'metrics.network.totalIngressTLSHandshakeTimeMillis' - the cumulative time across all ingress connections spent waiting on TLS handshake.
      Show
      Added two new server status metrics: 'metrics.network.totalIngressTLSConnections' - the cumulative number of ingress connections that used TLS 'metrics.network.totalIngressTLSHandshakeTimeMillis' - the cumulative time across all ingress connections spent waiting on TLS handshake.

    Description

      Original Downstream Change Summary

      Added two new server status metrics:
      'metrics.network.totalIngressTLSConnections' - the cumulative number of ingress connections that used TLS
      'metrics.network.totalIngressTLSHandshakeTimeMillis' - the cumulative time across all ingress connections spent waiting on TLS handshake.

      Description of Linked Ticket

      Log ingress TLS handshake duration after TLS handshake concludes for incoming connections. Additionally, record whether OCSP stapling was used during the handshake. Also add the TLS version and cipher information.

      Finally, add a counter that tracks the cumulative time the process has spent doing TLS handshaking for ingress connections. Add this cumulative measurement to FTDC.

      For details on OCSP stapling/questions, you can contact george.wangensteen@mongodb.com or mark.benvenuto@mongodb.com on the security team

      Attachments

        Issue Links

          documents

          Task - A task that needs to be done. SERVER-67238 Record Ingress TLS Handshake Duration

          • Major - P3 - Major loss of function.
          • Closed

          Activity

            People

              jason.price@mongodb.com Jason Price
              backlog-server-pm Backlog - Core Eng Program Management Team
              Githook User Githook User
              Jason Chan
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:
                25 weeks ago