Docs Menu

Docs HomeMongoDB Manual

CSFLE Cryptographic Primitives

MongoDB encrypts all fields in CSFLE with the AEAD AES-256-CBC encryption algorithm.

  • If you specify deterministic encryption for a field, your application passes a deterministic initialization vector to AEAD.

  • If you specify random encryption for a field, your application passes a random initialization vector to AEAD.

Note

Authenticated Encryption

MongoDB CSFLE uses the encrypt-then-MAC approach to perform authenticated encryption. MongoDB CSFLE uses the HMAC-SHA-512 algorithm to generate your MAC.

←  How CSFLE Decrypts DocumentsAutomatic Encryption Shared Library for CSFLE →
Share Feedback
© 2023 MongoDB, Inc.

About

  • Careers
  • Investor Relations
  • Legal Notices
  • Privacy Notices
  • Security Information
  • Trust Center
© 2023 MongoDB, Inc.