Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-12671

Provide option to allow "masking" of query variables within audit stream.

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Major - P3
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: Backlog
    • Component/s: Logging, Security
    • Labels:

      Description

      This enhancement allows users to optionally "mask" variables within the audit log. Use case would include logging of CRUD commands generated by applications that manage sensitive data (SSN, credit card data, medical records, etc.). This could be implemented globally or via collection, document, field level tagging. Most competing rdbms' provide this level of data obsfuscation for sensitive data.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              backlog-server-security Backlog - Security Team
              Reporter:
              rob.young@10gen.com Rob Young
              Participants:
              Votes:
              1 Vote for this issue
              Watchers:
              12 Start watching this issue

                Dates

                Created:
                Updated: