Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-12671

Provide option to allow "masking" of query variables within audit stream.

    • Type: Icon: New Feature New Feature
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: Logging, Security
    • Server Security

      This enhancement allows users to optionally "mask" variables within the audit log. Use case would include logging of CRUD commands generated by applications that manage sensitive data (SSN, credit card data, medical records, etc.). This could be implemented globally or via collection, document, field level tagging. Most competing rdbms' provide this level of data obsfuscation for sensitive data.

            Assignee:
            backlog-server-security [DO NOT USE] Backlog - Security Team
            Reporter:
            rob.young@10gen.com Rob Young (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            12 Start watching this issue

              Created:
              Updated: