MongoDB 4.2 introduced Client-Side Field Level Encryption (FLE), an advanced security feature to natively encrypt data at the application using customer-managed keys before documents are ever sent to the database. This session will present reference architectures and production guidance for confidential workloads, including performance optimizations, and recommended encrypted search patterns to getting the most out of FLE.
Example code demonstrating strong end-to-end encryption in Atlas or on-premise will be presented. Implications for developers and others designing systems in regulated environments will be discussed, followed by a deep-dive Q&A.
Kenneth White is a security engineer whose work focuses on networks and global systems. He is co-founder and Director of the Open Crypto Audit Project and led formal security reviews on TrueCrypt and OpenSSL. He currently leads applied encryption engineering in MongoDB's global product... Read More →