Prioritize database security for data protection
As one of the leading players in the database sector, MongoDB provides organizations around the world with the architecture to organize and store huge volumes of data. At each organization, the protection of that data should be of paramount importance. For MongoDB users, this can be performed through either client-side field level encryption (FLE) or data-at-rest encryption.
Yet enabling the encryption features within MongoDB results in a requirement to centralize, manage and protect the keys necessary for encryption. MongoDB does not provide a method to do this. As such, an organization encrypting data within MongoDB must have in place a third party key management system (KMS). The KMS must support the key management interoperability protocol (KMIP), which is supported by MongoDB and used to integrate the two systems.
Leverage KMIP to integrate SvKMS with MongoDB
StorMagic SvKMS has been built to maximize the possibilities of KMIP and ensure it can integrate with as many platforms and services as possible. This includes MongoDB encrypted databases, and as such, SvKMS provides a secure, centralized key management console that enables organizations to perform full key lifecycle operations on all MongoDB encryption keys, as well as any other encryption workloads within the organization.
Integrating SvKMS with MongoDB to enable encryption key management is a straightforward process and consists of two parts. Firstly, the root CA certificate must be generated from SvKMS – this can be done either using OpenSSL or within a browser. Second, the MongoDB configuration file is updated with key management security options and the /etc/hosts file is updated.
For a full integration guide between SvKMS and MongoDB, please complete the form below.