[SERVER-39897] Implement field level encryption for various commands in JS shell API Created: 01/Mar/19  Updated: 29/Oct/23  Resolved: 17/May/19

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 4.1.12

Type: Task Priority: Major - P3
Reporter: Mark Benvenuto Assignee: Shreyas Kalyan
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
depends on SERVER-39893 Implement AEAD_AES_256_CBC_HMAC_SHA_512 Closed
depends on SERVER-39894 Add support for AWS credentials in th... Closed
depends on SERVER-39896 Write shell JS API for explicitly enc... Closed
Documented
Backwards Compatibility: Major Change
Sprint: Security 2019-03-25, Security 2019-04-08, Security 2019-04-22, Security 2019-05-06, Security 2019-05-20
Participants:

 Description   
  1. In MongoBase::Functions,
    hook runCommand() (handles aggregate, find(), findAndModify, insert, update, delete, etc), insert(), delete(), remove(), update(), runCommandWithMetadata() to encrypt and decrypt data
  2. Directly call the query_analysis functions to do the transformations
  3. Add new functions to transform markings into encrypted data

JSON Schema Management:

  1. Query KeyStore for JSON schema and cache JSON schema in memory
  2. Add ability to query remote mongodb key store in C++
  3. Store schemas in an LRU cache in memory keyed, ie Map<string, BSON>
  4. Store keys in an LRU cache in memory as well


 Comments   
Comment by Githook User [ 17/May/19 ]

Author:

{'email': 'shreyas.kalyan@10gen.com', 'name': 'Shreyas Kalyan', 'username': 'shreyaskalyan'}

Message: SERVER-39897 Implement field level encryption for various commands in JS shell API
Branch: master
https://github.com/mongodb/mongo/commit/0dea5729cd3cf2fb219aeeb7fdbbdfa58c8c7bb3

Comment by Githook User [ 17/May/19 ]

Author:

{'name': 'Shreyas Kalyan', 'email': 'shreyas.kalyan@10gen.com', 'username': 'shreyaskalyan'}

Message: SERVER-39897 Implement field level encryption for various commands in JS shell API
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/dc7e42bb211084cb6ae92a8f98dcaae202c3b9da

Generated at Thu Feb 08 04:53:26 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.