[SERVER-39896] Write shell JS API for explicitly encrypting and decrypting data Created: 28/Feb/19  Updated: 29/Oct/23  Resolved: 03/May/19

Status: Closed
Project: Core Server
Component/s: Shell
Affects Version/s: None
Fix Version/s: 4.1.11

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Shreyas Kalyan
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
depends on SERVER-39892 Integrate KMS Message Library with sy... Closed
is depended on by SERVER-39897 Implement field level encryption for ... Closed
Documented
is documented by DOCS-12689 Docs for SERVER-39896: Write shell JS... Closed
Problem/Incident
Backwards Compatibility: Fully Compatible
Sprint: Security 2019-04-08, Security 2019-04-22, Security 2019-05-06
Participants:
Linked BF Score: 0

 Description   

Including reading and writing encrypted payload format (see Bindata SubType 6 document)

This should be done by extending and deriving from DBClientBase a new class that implements encrypt, decrypt, and generateDataKey. The Mongo object in Javascript is just an adapter for DBClientBase so deriving a new class from it that maintains the KMS information would be the least intrusive.

API:

    encrypt(algorithm: string, keyId: UUID, iv? : byte[]) : BinData {}
    decrypt(value: BinData) : BSON {}



 Comments   
Comment by Githook User [ 03/May/19 ]

Author:

{'name': 'Shreyas Kalyan', 'username': 'shreyaskalyan', 'email': 'shreyas.kalyan@10gen.com'}

Message: SERVER-39896 Write shell JS API for explicitly encrypting and decrypting data
Branch: master
https://github.com/mongodb/mongo/commit/db25498d92df83ee72999a99abf95102b01f1649

Comment by Githook User [ 03/May/19 ]

Author:

{'name': 'Shreyas Kalyan', 'username': 'shreyaskalyan', 'email': 'shreyas.kalyan@10gen.com'}

Message: SERVER-39896 Write shell JS API for explicitly encrypting and decrypting data
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/4fd9ae2949e1d20f1033823d92f4c3f8680142ce

Generated at Thu Feb 08 04:53:26 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.