Over a million developers have joined DZone.
Silver Partner

MongoDB Encryption Options

· Database Zone

The Database Zone is brought to you in partnership with JetBrains.   Discover how DataGrip provides a UI for operations like creating/modifying tables and managing their columns, keys and indices. 

MongoHQ wrote a helpful blog on the encryption features in MongoDB.  Its a big deal for the larger, more cautious companies as well as smaller ones, so it behooves a MongoDB host in company like MongoHQ to help share information about MongoDB's security.

The two pri­mary lev­els for encryp­tion are:

  • “Data-in-motion” is pro­tected by encrypt­ing the data in tran­sit; solved with SSL/TLS.  We’ll have more to say about this in a future post.
  • “Data-at-rest” is pro­tected by encrypt­ing stored infor­ma­tion, the topic of this post.

Data-at-rest encryp­tion can be solved with any/all of the following:

  • Encrypt the entire drive
  • Encrypt indi­vid­ual files or data­bases on the disk
  • Encrypt entire doc­u­ments (rows in SQL-land) or indi­vid­ual attrib­utes (columns in SQL-land) at the appli­ca­tion level

--MongoHQ Blog


The post also emphasizes that application-level encryption is paramount.

The Database Zone is brought to you in partnership with JetBrains.   Discover how DataGrip provides a UI for operations like creating/modifying tables and managing their columns, keys and indices. 

Topics:

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}