Field Level Encryption is GA

Asya Kamsky and Kenneth White
December 10, 2019 | Updated: December 13, 2019
#enterprise security#MongoDB 4.2

MongoDB 4.2 introduced the capability to selectively encrypt and decrypt individual document fields in the application before data is sent to the database. This feature has been in beta preview since we announced it at MongoDB World in June. Starting today, Client-Side Field Level Encryption is Generally Available (GA), and ready for your production applications.

Javascript/Node.js, Python, Java, Java Reactive Streams, Scala, C# .NET, and Go drivers are available now for all supported operating systems and platforms. The mongo shell v. 4.2.2 is shipping with fully integrated field level encryption as well. Additional languages are going through final testing and will be available soon.

Working closely with customers and developers during the beta, we got great feedback from UX testing studies, and have used that to refine our documentation & full tutorials, as well as language-specific "hello world" code examples.

Over the next few weeks, we will cover many topics related to FLE:

  • Detailed step-by-step CSFLE tutorials for different languages/drivers
  • In-depth look into the performance impacts of different encryption mode options, under varying workloads and reference query architectures.
  • Production best practices, including supplementing local JSON Schema with server-side validation
  • A deep-dive whitepaper on our cryptography implementation
  • Independent security audit summaries

Testing in the Field

As a healthcare platform that works with over 2,300 hospitals around the country, securing patient data is our top priority. Working closely with MongoDB on development of the Field Level Encryption product, we implemented it into our platform quickly and at scale. Using this solution is a gamechanger for our business.

Michael Oltman, CTO of Apervita

During our private beta program over the summer and fall, our engineering team had the opportunity to work very closely with a number of innovative customer organizations. Among these was Apervita, a company that services with some of the largest physician provider and insurer networks in the world on highly sensitive medical and prescription data. That partnership was invaluable in understanding use profiles and the demands of real-world applications.

In developing Client-Side Field Level Encryption (CSFLE), we worked with three international teams with deep expertise on cryptography and database encryption. Drawn from academia and industry, these teams have provided expert guidance and feedback on our CSFLE design and implementation, including conducting formal reviews of the software security. The cryptanalysis and software security audits are now complete and will be shared shortly.

Performance

We have also created and conducted multiple performance benchmarks to understand the potential impact of using field level encryption in typical enteprise applications. As expected, there is some additional latency incurred to encrypt and decrypt fields but generally well in line with our design goals of less than 5-10% net impact on high volume read-intensive applications. Most importantly - applications which don't read or write encrypted fields see no change in performance. Applications which encrypt a small number of fields incur smaller latency hit than ones that encrypt the majority of the fields in all documents, particularly when initially generating new data keys en masse.

Beyond Encryption-at-Rest

We recently presented an overview of the field level encryption features at AWS re:Invent which you can download here. To recap, while many security controls exist to encrypt confidential data-in-transit over a network (e.g., TLS and HTTPS) as well as data-at-rest (e.g., volume or file-level encryption), fewer options exist for developers to address data-in-use, that is, data operating inside a running, active database.

By using data-at-rest encryption, attackers obtaining database files from the filesystem would be typically be unable to read them. However, administrators and privileged users (including attackers) still have access to the data on a live, running instance. Using MongoDB CSFLE you can protect individual fields and documents with all key management, encryption, and decryption operations occurring exclusively outside the database server. With CSFLE enabled, a compromised administrator or user obtaining access to the database, the underlying filesystem, or the contents of server memory (for example, via scraping or process inspection) will only see unreadable encrypted data.

Client-Side Field Level Encryption Flow

This approach enables greater separation of duties:

  • System administrators who traditionally have access to operating systems, database server DBA access, logs, and backups cannot read encrypted data unless explicitly given client access along with the keys necessary to decrypt the data.
  • In addition several regulatory obligations may be addressed by leveraging client side encryption architectures. Complying with the “right to be forgotten” provisions in new privacy regulations such as the GDPR are now much easier. By destroying keys tied to individual application users, the underlying data are irrecoverably destroyed.

Where Can You Use Client-Side FLE?

MongoDB Client-Side Field Level Encryption is available wherever you run MongoDB 4.2 whether that's the Atlas fully-managed cloud service, or in your own data center with Enterprise Advanced, or the Community server.

The automatic and transparent encryption option (requiring little or no change to existing CRUD queries) is an Atlas and EA-only feature, enabled through the mongocryptd application-side service module. The core cryptography framework C library has been released under an Apache license and is available on GitHub.

This effort has been two years in the making and we are thrilled to announce that it is Generally Available for production use beginning today.

← Previous

Quick Start: Java and MongoDB - Delete Operations

Learn how to delete documents from a MongoDB cluster using the Java Driver.

December 10, 2019
Next →

Data Resilience with MongoDB Atlas

Data is the central currency in today's digital economy. Studies have shown that 43% of companies that experience major data loss incidents are unable to resume business operations. A range of scenarios can lead to data loss, yet within the realm of database technology, they typically fall under three main categories: catastrophic technical malfunctions, human error, and cyber attacks. A data loss event due to a catastrophic breakdown, human error, or cyber attack is not a matter of if, but a matter of when it will occur. Hence, businesses need to focus on how to avoid and minimize the effects as much as possible. Failure to effectively address these risks can lead to extended periods of downtime of a few hours or even a few weeks following an incident. The average cost of cyberattacks is a surprising $4.45 million, with some attacks costing in the hundreds of millions. Reputational harm is harder to quantify but no doubt real and substantial. The specific industry you're in might be subject to regulatory frameworks designed to counter cyber attacks. Businesses that are subject to regulatory regimes must maintain compliance with these requirements. This can determine the configuration of your disaster recovery approach. In this blog post, we'll explain the key disaster recovery (DR) capabilities available with MongoDB Atlas . We'll also cover the core responsibilities and strategies for data resilience including remediation, and recovery objectives (RTO/RPO). Planning for data resilience in Atlas Data resilience is not a one-size-fits-all proposition, which is why we offer a range of choices in Atlas for a comprehensive strategy. Our sensible defaults ensure you're automatically safeguarded, while also offering a variety of choices to precisely align with the needs of each individual application. When formulating a disaster recovery plan, organizations commonly begin by assessing their recovery point objective (RPO) and recovery time objective (RTO). The RPO specifies the amount of data the business can tolerate losing during an incident, while the RTO indicates the speed of recovery. Since not all data carries the same urgency, analyzing the RPO and RTO on a per-application basis is important. For instance, critical customer data might have specific demands compared to clickstream analytics. The criteria for RTO, RPO, and the length of time you need to retain backups will influence the financial and performance implications of maintaining backups. With MongoDB Atlas, we provide standard protective measures by default, with customizable options for tailoring protection to the service level agreements specified by the RPO and RTO in your DR plan. These are enhanced by additional features that can be leveraged to achieve greater levels of availability and durability for your most vital tasks. These features can be grouped into two main categories: prevention and recovery. Backup, granular recovery, and resilience There are many built-in features that are designed to prevent disasters from ever happening in the first place. Some key features and capabilities that enable a comprehensive prevention strategy include multi-region and multi-cloud clusters , encryption at rest , Queryable Encryption , cluster termination safeguards , backup compliance protocols , and the capability to test resilience . (We will discuss the features in-depth in part two of this series.) While prevention might satisfy the resilience needs of certain applications, different applications may demand greater resilience against failures based on the business requirements of data protection and disaster recovery. MongoDB provides comprehensive management of data backups, including the geographic distribution of backups across multiple regions, and the ability to prevent backups from being deleted, all through an automated retention schedule. Recovery capabilities are aimed at supporting RTO and minimizing data loss and include continuous cloud backups with point-in-time recovery. Atlas cloud backups utilize the native snapshot feature of your cluster's cloud service provider, ensuring backup storage is kept separate from your MongoDB Atlas instances. Backups are essentially snapshots that capture the condition of your database cluster at a specific moment. They serve as a safeguard in case data is lost or becomes corrupted. For M10+ clusters, you have the option of utilizing Atlas Cloud Backups, which leverage the cluster's cloud service provider for storing backups in a localized manner. Atlas comes with strong default backup retention of 12 months out of the box. You also have the option to customize snapshot and retention schedules, including the time of day for snapshots, the frequency at which snapshots are taken over time, and retention duration. Another important feature is continuous cloud backup with point-in-time recovery, which enables you to restore data to the moment just before any incident or disruption, such as a cyber attack. To ensure your backups are regionally redundant and you can still restore even if the primary region that your backups are in is down, MongoDB Atlas offers the ability to copy these critical backups, with the point-in-time data, to any secondary region available from your cloud provider in Atlas. For the most stringent regulations, or for businesses that want to ensure backups are available even after a bad actor or cyber attack, MongoDB Atlas can ensure that no user, regardless of role, can ever delete a backup before a predefined protected retention period with the Backup Compliance Policy. Whatever your regulatory obligations or business needs are, MongoDB Atlas provides the flexibility to tailor your backup settings for requirements. Crucially, this ensures you can recover quickly, minimizing data loss and meeting your RPO in the event of a disaster recovery scenario. When properly configured, testing has shown that Atlas can quickly recover to the exact timestamp before a disaster or failure event, giving you a zero-minute RPO and RTO of less than 15 minutes when utilizing optimized restores. Recovery times can vary due to cloud provider disk warming and which point in time you are restoring to. So, it is important to also test this regularly. This means that regardless of your regulatory or business requirements, MongoDB Atlas allows you to configure your backups to ensure that you can meet your recovery requirements and, most importantly, recover with precision and speed to ensure that your data loss is minimal and your recovery point objectives are met should you experience a recovery event. Conclusion As regulations and business needs continue to evolve, and cyber-attacks become more sophisticated and varied, creating and implementing a data resilience strategy can be simple and manageable. MongoDB Atlas comes equipped with built-in measures that deliver robust data resilience at the database layer, ensuring your ability to both avoid incidents and promptly restore operations with minimal data loss if an incident does occur. Furthermore, setting up and overseeing additional advanced data resilience features is straightforward, with automation driven by a pre-configured policy that operates seamlessly at any scale. This streamlined approach supports compliance without the need for manual interventions, all within the MongoDB Atlas platform. For more information on the data resilience and disaster recovery features in MongoDB Atlas, download the Data Resilience Strategy with MongoDB Atlas whitepaper. To get started on Atlas today, we invite you to launch a free tier today .

October 3, 2023