Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39897

Implement field level encryption for various commands in JS shell API

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Major - P3 Major - P3
    • 4.1.12
    • None
    • None
    • None
    • Major Change
    • Security 2019-03-25, Security 2019-04-08, Security 2019-04-22, Security 2019-05-06, Security 2019-05-20

    Description

      1. In MongoBase::Functions,
        hook runCommand() (handles aggregate, find(), findAndModify, insert, update, delete, etc), insert(), delete(), remove(), update(), runCommandWithMetadata() to encrypt and decrypt data
      2. Directly call the query_analysis functions to do the transformations
      3. Add new functions to transform markings into encrypted data

      JSON Schema Management:

      1. Query KeyStore for JSON schema and cache JSON schema in memory
      2. Add ability to query remote mongodb key store in C++
      3. Store schemas in an LRU cache in memory keyed, ie Map<string, BSON>
      4. Store keys in an LRU cache in memory as well

      Attachments

        Activity

          People

            shreyas.kalyan@mongodb.com Shreyas Kalyan
            mark.benvenuto@mongodb.com Mark Benvenuto
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: