Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-6112

Key Rotation and Cipher Mode Selection

    XMLWordPrintableJSON

Details

    Description

      • Add support for authenticated GCM encryption mode in addition to CBC mode for Encrypted Storage Engine
      • Key rotation is only supported for KMIP master keys and is performed by using the following command line flag: --kmipRotateMasterKey
        If no --kmipKeyIdentifier is provided, the server will either request a new key from the KMIP server or try to request the key id specified.

      Attachments

        Activity

          People

            kay.kim@mongodb.com Kay Kim (Inactive)
            kay.kim@mongodb.com Kay Kim (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              8 years, 20 weeks, 5 days ago