Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39896

Write shell JS API for explicitly encrypting and decrypting data

    XMLWordPrintable

    Details

    • Type: Task
    • Status: In Code Review
    • Priority: Major - P3
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: 4.1 Desired
    • Component/s: Shell
    • Labels:
      None

      Description

      Including reading and writing encrypted payload format (see Bindata SubType 6 document)

      This should be done by extending and deriving from DBClientBase a new class that implements encrypt, decrypt, and generateDataKey. The Mongo object in Javascript is just an adapter for DBClientBase so deriving a new class from it that maintains the KMS information would be the least intrusive.

      API:

          encrypt(algorithm: string, keyId: UUID, iv? : byte[]) : BinData {}
          decrypt(value: BinData) : BSON {}
      

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: