SoylentNews is people
SoylentNews
MongoDB's Field-Level Encryption Protects Private Data—Even From DBAs[:
In December 2019, popular document database MongoDB added a fairly radical new feature to the platform: field-level database encryption. At first glance, one might wonder whether this is a meaningful feature in a world that already has at-rest storage encryption and in-flight transport encryption—but after a little closer analysis, the answer is a resounding yes.
One of MongoDB's first customers to use the new technology is Apervita, a vendor that handles confidential data for well over 2,000 hospitals and nearly 2 million individual patients. Apervita worked side by side with MongoDB during development and refinement of the technology.
Since reaching general availability in December, the technology has also been adopted by several government agencies and Fortune 50 companies, including some of the largest pharmacies and insurance providers.
This is a good thing. Field Level Encryption (FLE) is a must for any DB these days.
(Score: 2) by Bot on Friday April 03 2020, @05:21PM
Field level encryption is nothing new in app servers, enforcing it at db level could possibly, depending on the configuration, be faster. Problems come with indexes, searching is either badly affected or reveals data to the DBA. The DBA can also inject cleartext to possibly crack the encryption. It is especially good for archives though.
Account abandoned.