Event
{Event}  Bring a friend (or 2!) and save 50% on passes for MongoDB World! Register now and save >>

MongoDB Security

MongoDB is built with security in mind, and MongoDB Atlas, the application data platform by MongoDB, offers all the latest security features you would expect from any other database.

Security is the top priority at MongoDB. That is why many security features are included in the MongoDB database and the Atlas application data platform. These features help you and your team ensure that all of your data is stored safely and securely.

Amongst other things, MongoDB offers authentication, authorization and encryption to help you secure your MongoDB deployments.

Authentication

Verify the identity of clients connecting to MongoDB through SCRAM, x.509, Kerberos, or LDAP proxy.

Authorization

Specify who has access to what resources through fine-grained role-based access control (RBAC).

Encryption

Ensure that your data is encrypted by using TLS/SSL and client-side field level encryption.

Authentication mechanisms to suit your needs

When it comes to verifying the identity of who is connecting to your database, MongoDB Atlas offers multiple choices. From classic username and password authentication using SCRAM to advanced integrations with systems such as Kerberos, Atlas has you covered. In addition to user access, network access can also be configured so that only known devices or servers can reach your database.

Fine-tuning of authorizations and permissions

Not all users are made equal. You might want to limit access to some of your database users to specific databases. A user might be needed only for a particular subset of operations on a limited number of collections. With MongoDB Atlas, you can easily assign roles to newly created users. If the predefined roles don’t suit your needs, you can create your custom roles with fine-grain tuning on their permissions.

End-to-end encryption

MongoDB takes data security very seriously. All data transfers use SSL/TLS to ensure that your data is transmitted between the clients and the server in the most secure way possible. In addition to encryption across the wire, data can automatically be encrypted on the client before leaving the application. This can be useful when working with sensitive user information.

Other security features

MongoDB is built with a security-first approach. By default, everything is restricted –no users are allowed in, and no devices are allowed to access the database. This gives system administrators more control over who can access the resources.

In addition to these authorization and authentication features, MongoDB offers a myriad of security enhancements, such as:

  • Network isolation and access
  • Encryption in flight and at rest
  • Granular database auditing

MongoDB was also independently audited for security, and is compliant with most major standards like GDPR, HIPAA, and ISO27001.

Database Security & Atlas

MongoDB Atlas, the cloud application data platform by MongoDB, makes it easier than ever to keep your data secure. In addition to the authentication, authorization and encryption features discussed, it offers advanced security features.

  • Encryption key management: you can use your own encryption keys for and data inside MongoDB Atlas, including collections, fields, and even backup snapshots.
  • Granular database auditing: keep track of user activity by monitoring their commands against the database.
  • Private endpoints: create private endpoints or use VPC peering to connect your MongoDB Atlas clusters with cloud services privately.
Find out more with our white paper

MongoDB Atlas Security Controls

Learn more about MongoDB Atlas security controls and features including data storage, access controls, application security, and more..

Featured Resources

DOCUMENTATION

Learn more about all the security features in the MongoDB platform by looking at our docs

DOCUMENTATION

Find out more about the security features in MongoDB Atlas.

BLOG

Help make your application more secure by following the security best practices checklist

DOCUMENTATION

Learn more about all the security features in the MongoDB platform by looking at our docs

FAQs

Is MongoDB secure?

Yes, MongoDB is a secure database. It is built with security in mind, and has multiple features for authentication, authorization, and encryption.

Is MongoDB connection encrypted?

All traffic between client and MongoDB Atlas is encrypted with TLS/SSL (Transport Layer Security/Secure Sockets Layer) so that the traffic is only readable by the client it was meant for.

How secure is MongoDB Atlas?

MongoDB Atlas has all the modern security features you would expect from a cloud based data platform. It has been independently audited and complies to the industry standards such as GDPR, HIPAA, and CSA Star.

Is MongoDB traffic encrypted?

When configured correctly, any traffic between MongoDB and connected clients is encrypted with TLS/SSL. The traffic is only readable by the intended party.