[SERVER-58845] Implement Local Keystore for Audit Log Encryption Created: 26/Jul/21  Updated: 29/Oct/23  Resolved: 03/Sep/21

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 5.1.0-rc0

Type: New Feature Priority: Major - P3
Reporter: Shreyas Kalyan Assignee: Erwin Pe
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
depends on SERVER-58842 Implement and Mock Interface for Key ... Closed
Backwards Compatibility: Fully Compatible
Sprint: Security 2021-08-23, Security 2021-09-06
Participants:

 Description   

The local keystore implementation should implement a version of the AuditKeyManager. The function generateWrappedKey should generate a log encryption key of size crypto::sym256KeySize and wrap it with a key on disk specified through the config parameter AuditLog.LocalAuditKeyFile. The algorithm used to wrap the key should be AES256-CBC.



 Comments   
Comment by Vivian Ge (Inactive) [ 06/Oct/21 ]

Updating the fixversion since branching activities occurred yesterday. This ticket will be in rc0 when it’s been triggered. For more active release information, please keep an eye on #server-release. Thank you!

Comment by Githook User [ 21/Sep/21 ]

Author:

{'name': 'Benety Goh', 'email': 'benety@mongodb.com', 'username': 'benety'}

Message: SERVER-58845 fix windows compile
Branch: SERVER-58852
https://github.com/10gen/mongo-enterprise-modules/commit/105cbdc017d024f4af84f2dbe2bbd4ecb44f3c6e

Comment by Githook User [ 21/Sep/21 ]

Author:

{'name': 'Erwin Pe', 'email': 'erwin.pe@mongodb.com', 'username': 'erwee'}

Message: SERVER-58845 Implement local keystore for audit log encryption
Branch: SERVER-58852
https://github.com/10gen/mongo-enterprise-modules/commit/25f0680686d0d962adbd3e30b58f32606157b828

Comment by Githook User [ 04/Sep/21 ]

Author:

{'name': 'Benety Goh', 'email': 'benety@mongodb.com', 'username': 'benety'}

Message: SERVER-58845 fix windows compile
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/105cbdc017d024f4af84f2dbe2bbd4ecb44f3c6e

Comment by Githook User [ 03/Sep/21 ]

Author:

{'name': 'Erwin Pe', 'email': 'erwin.pe@mongodb.com', 'username': 'erwee'}

Message: SERVER-58845 Implement local keystore for audit log encryption
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/25f0680686d0d962adbd3e30b58f32606157b828

Generated at Thu Feb 08 05:45:36 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.