security

7 results

MongoDB 2.6 Live Webinar: Compliance and Data Protection in Big Data Age

Data security and privacy is a critical concern in today’s connected world. Data analyzed from new sources such as social media, logs, mobile devices and sensor networks has become as sensitive as traditional transaction data generated by back-office systems. For this reason, big data technologies are evolving to meet the regulatory compliance standards demanded by industry and government. MongoDB 2.6 extends capabilities to defend, detect and control access to online big data with the most complete security controls of any NoSQL database. These capabilities are discussed in the post below, and you can learn more for them in our live webinar on Thursday 1st May. Registration is open! Authentication Building upon existing Kerberos protocol support, the MongoDB 2.6 Enterprise subscription adds support for LDAP, enabling integration with centralized identity management policies, avoiding the need to duplicate credentials across multiple systems. In addition, support for x.509 certificates allows the authentication of clients and cluster nodes without using potentially vulnerable passwords and keyfiles. Authorization MongoDB allows administrators to define permissions for a user or application, and what data it can see when querying the database. MongoDB has offered a number of built-in roles, and now extends this with the ability to configure granular user-defined roles. With such Role Based Access Control, administrators can enforce a separation of duties between different entities accessing and managing the database. Additionally, using the new redact operator offered within MongoDB Aggregation pipeline, applications can implement field-level access control using trusted middleware. By managing control at the field level, a single document can contain data with multiple security levels, avoiding the complexity of separating information with different security levels across multiple databases.Permissions can be based on both the content of the document and on specific user privileges, based on security labels. Access control policies are described using the MongoDB query language, making it simple for developers to implement the required controls. Since data is redacted before it is returned to the application, exposure of sensitive information is reduced. Field level redaction is applicable to a wide range of sensitive data including personally identifiable information such as names, social security numbers, birthdates and bank account numbers. Auditing Security Administrators can use MongoDB native audit log to track access and administrative actions taken against the database, with events written to the console, syslog or a file. The DBA can then merge these events into a single log, enabling a cluster-wide view of operations that affected multiple nodes. Encryption MongoDB 2.6 delivers enhanced SSL support. Now a single port can mix both SSL and non-SSL connections, enabling simpler upgrades to SSL-based clusters and the creation of more flexible encryption policies, ie internal vs external traffic. Tools such as mongodump, mongorestore, mongostat, etc. now support SSL connections. mongod and mongos processes can now prompt for a SSL certificate passphrase at start-up. MongoDB supports FIPS 140-2 encryption when run in FIPS Mode with a FIPS validated Cryptographic module. Monitoring and Backup Database monitoring and backup are critical in identifying and protecting against potential exploits, reducing the impact of any attempted breach. For example, sudden peaks in the CPU and memory loads of host systems and high operations counters in the database can indicate a Denial of Service attack. MongoDB ships with a variety of tools including mongostat and mongotop that can be used to monitor your database. The most comprehensive monitoring solution is provided by the MongoDB Management Service (MMS). MongoDB Management Service (MMS) is an application for managing MongoDB deployments, making it easier to operate MongoDB securely at any scale. MMS provides automation, monitoring, backup and recovery, helping users optimize clusters and mitigate operational risk. MMS users can visualize database performance and set custom alerts that notify when particular metrics are out of normal range. MMS is also the only continuous backup solution for MongoDB, providing point-in-time recovery for replica sets and cluster-wide snapshots of sharded systems. With the release of MMS 1.4 alongside MongoDB 2.6, Backup is now available for on-premise deployment, as part of a MongoDB subscription. Resources to Learn More Tune into our live webinar, Thursday 1st May Download our whitepaper: MongoDB Security Architecture (opens a pdf) Review step by step guides in our tutorial: MongoDB Security Introduction Register For Thursday's Free Webinar

April 28, 2014

MongoDB 2.4 Enhances Management, Performance and Developer Productivity Introducing MongoDB Enterprise

NoSQL began as a way for large web firms to scale, but is increasingly becoming an enterprise standard as organizations attempt to cope with not only a dizzying volume of data, but also an increasingly diverse set of data sources that must be integrated and analyzed in real-time. To meet the demands of Big Data, 10gen today released MongoDB 2.4, adding features that make the world’s most popular NoSQL database even easier to manage and secure for mission-critical enterprise applications running at scale. MongoDB has long been popular with developers, consistently ranked the leading NoSQL database across a variety of indices . Developers appreciate the improved agility, performance, and scalability that MongoDB offers them. With version 2.4, 10gen has continued to cater to developer needs while also broadening MongoDB’s appeal to enterprise Operations teams tasked with managing their growing MongoDB deployments. These improvements are available in MongoDB Enterprise , a new edition of MongoDB that makes it more convenient for enterprises to find the appropriate tools, functionality, and services to support their development and ongoing operations. MongoDB Enterprise replaces 10gen’s Subscriber Edition, and is provided with 10gen's Enterprise Subscription, which includes our most comprehensive Service Level Agreement (SLA). Several of the more important components of MongoDB Enterprise and of the general MongoDB 2.4 release are highlighted below. Tooling For a number of years 10gen has offered organizations the ability to monitor and manage MongoDB through its free, cloud-based MongoDB Monitoring Service (MMS). This service has far exceeded our expectations, and today tens of thousands of users benefit from the insights provided by MMS for operating their MongoDB systems. For some organizations, however, there are policies that prohibit sharing sensitive information related to database usage in the cloud. MongoDB Enterprise now includes MongoDB Monitoring, an on-premise monitoring solution. As with MMS, MongoDB Monitoring gives customers excellent visualization and alerts on over 100 system metrics. For those who wish to monitor their MongoDB deployments using other popular monitoring tools like Nagios, MongoDB Enterprise users benefit from enhanced enterprise software integration options, including SNMP to support such integration with third-party offerings. These operations-related improvements make it easier than ever to deploy and manage MongoDB clusters. Other benefits include improved resilience for cloud environments, more fine-grained control of in-flight operations, and extended visibility into system operations. Advanced Security Security is a critical consideration for applications, and with MongoDB Enterprise users can easily develop and integrate with standard enterprise security standards by providing Kerberos-based authentication. MongoDB 2.4 also provides role-based privileges, which separate responsibilities for server, database and cluster administration, and give the enterprise more granular security than before./p> Mission-Critical Support Enterprises have turned to MongoDB to build business-transforming applications, and simultaneous with the MongoDB 2.4 release, 10gen has augmented its subscription offerings with enhanced service tiers, including the Enterprise Subscription, which comes with a 30-minute SLA. As noted above, beyond these more Operations-focused offerings, MongoDB 2.4 also includes a number of other features that are designed to make developers even more productive. Some of the more prominent examples include: Hash-based sharding . Helps enterprises that have been running MongoDB in large clusters by ensuring even distribution of reads and writes, requiring less upfront planning Text search . The most requested feature in the history of MongoDB, integrated text search removes the need for synchronization between MongoDB and an external search engine and significantly improves manageability Geospatial enhancements . Now users can perform more sophisticated analysis, including polygon intersections, through queries and the Aggregation Framework Capped arrays . Users can more easily track top lists of things, such as tags in blog posts and leaderboards for gaming applications Performance improvements - Includes the ability to run multiple MapReduce jobs simultaneously and 3X to 5X speed improvements in the Aggregation Framework for real-time analytics There has never been a better time to develop with MongoDB. After only HTML5, MongoDB is the most sought after technical skill by employers , and is consistently ranked in the top-two most in-demand Big Data technologies . With MongoDB 2.4 and product upgrades like MongoDB Enterprise, 10gen gives enterprises the tools to make the best use of MongoDB. Learn More About MongoDB 2.4 Download MongoDB 2.4 or a trial of MongoDB Enterprise Attend an upcoming webinar in our 2.4 series on Geo Capabilities , Security , and Hash-based Sharding . Attend an upcoming conference in London , San Francisco , or New York , all featuring a dedicated 2.4 new features track. Register with the promotional code ReleaseDB for 25% off of your ticket. Tagged with: MongoDB, MongoDB 2.4, operations, high performance, management tools, MongoDB Monitoring Service, monitoring, MongoDB Enterprise, security, mongodb support

March 19, 2013

Get Ready for MongoSV: MongoDB Ops Track

For the first time at MongoSV , 10gen will offer a full track dedicated to operations for those interested in learning about the maintenance strategies and best practices for your MongoDB clusters. This track will include introductory and advanced sessions covering topics such as performance tuning and deployment. Here are some highlights to expect in the ops track : MongoDB Sharding with Brandon Black : This session will review MongoDB's sharding support, including an architectural overview, design principles, and strategies for automating load distribution. You will also gain insight into how to choose a shard key, which is an important design decision for building successful system. Advanced Sharding Features with Bernie Hackett: If you would like to take an in-depth look at shard keys and look at multi-data center and tag aware sharding, this talk will give you the full details. Attendees should be well versed in basic sharding and familiar with concepts in the morning’s basic sharding talk. Capacity Planning with Scott Hernandez: Deploying MongoDB can be a challenge if you don’t understand how resources are used nor how to plan for the capacity of your systems. If you need to deploy, or grow, a MongoDB single instance, replica set, or tens of sharded clusters then you probably share the same challenges in trying to size that deployment. This talk will cover what resources MongoDB uses, and how to plan for their use in your deployment. Topics covered will include understanding how to model and plan capacity needs from the perspective of a new deployment, growing an existing one, and defining where the steps along scalability on your path to the top. The goal of this presentation will be to provide you with the tools needed to be successful in managing your MongoDB capacity planning tasks. Journaling and the Storage Engine with Antoine Girbal: In this session, you'll look under the hood and gain an understanding of MongoDB's storage architecture. Understanding these concepts should help you understand how you can ensure that your data is safe. Lessons from the Field: Performance and Operations with Scott Hernandez: The format of this talk is an interactive and fun adventure through some real-world cases and best practices of large deployments. This session will touch on backups, network availability, performance pitfalls, indexing/schema-design, log management, monitoring and alerting along with some good examples of diagnostic techniques with a goal of finding good solutions. MongoDB Security Features: In this talk, VP of Products and Services Ron Avnur will discuss security features for MongoDB 2.4 There will also be a number of community talks on operations with other technologies, such as Nathen Harvey's talk on MongoDB and Chef and Miles Ward’s talk on Optimizing Your MongoDB Database on AWS. For all other MongoDB Ops topics and questions, head to the MongoSV Community forum at the conference. At the forum, you can sit down with 10gen engineers at the ...Ask the Experts“ tables, and speak with 10gen Co-Founders and Dwight Merriman and Eliot Horowitz at the afternoon whiteboard session. Learn more about MongoSV and the Community Forum at MongoSV.com . Tagged with: mongodb, operations, Ops, security, features

November 20, 2012