MongoDBquery~30 mins

Encryption at rest concept in MongoDB - Mini Project: Build & Apply

Choose your learning style9 modes available

Learn Why Deep Visual Try Challenge Project Recall Time

Encryption at Rest Concept with MongoDB

📖 Scenario: You are working for a company that stores sensitive customer data in a MongoDB database. To protect this data, you need to set up encryption at rest, which means the data is encrypted when saved on disk.This project will guide you through creating a MongoDB collection, configuring encryption settings, and verifying the encryption setup.

🎯 Goal: Build a MongoDB setup that demonstrates encryption at rest by creating a collection, configuring encryption options, and ensuring data is stored securely.

📋 What You'll Learn

Create a MongoDB collection named customers with sample data

Add a configuration variable for encryption key management

Apply encryption at rest settings using MongoDB's encryption options

Complete the setup by enabling encryption in the MongoDB configuration

💡 Why This Matters

🌍 Real World

Encrypting data at rest protects sensitive information from unauthorized access if storage devices are lost or stolen.

💼 Career

Understanding encryption at rest is essential for database administrators and security engineers to ensure compliance and data protection.

Progress0 / 4 steps

Create the customers collection with sample data

Create a MongoDB collection called customers and insert these exact documents: { _id: 1, name: "Alice", email: "alice@example.com" } and { _id: 2, name: "Bob", email: "bob@example.com" }.

MongoDB

// Create the customers collection and insert sample documents
// Your code here

Need a hint?

Use db.customers.insertMany() with an array of documents.

Add encryption key configuration

Create a variable called encryptionKey and set it to the string "myEncryptionKey123" to represent the encryption key for data at rest.

MongoDB

db.customers.insertMany([
  { _id: 1, name: "Alice", email: "alice@example.com" },
  { _id: 2, name: "Bob", email: "bob@example.com" }
])

// Define the encryption key variable
// Your code here

Need a hint?

Use const encryptionKey = "myEncryptionKey123" to store the key.

Apply encryption at rest settings

Use the createCollection command with the option encryptedFields to specify that the email field in the customers collection should be encrypted. Use encryptionKey as the key identifier.

MongoDB

db.customers.insertMany([
  { _id: 1, name: "Alice", email: "alice@example.com" },
  { _id: 2, name: "Bob", email: "bob@example.com" }
])

const encryptionKey = "myEncryptionKey123"

// Create the customers collection with encryptedFields option
// Your code here

Need a hint?

Use db.createCollection with encryptedFields option specifying the email field and keyId as encryptionKey.

Enable encryption in MongoDB configuration

Add a configuration setting called enableEncryptionAtRest and set it to true to enable encryption at rest in the MongoDB setup.

MongoDB

const encryptionKey = "myEncryptionKey123"

db.createCollection("customers", {
  encryptedFields: {
    fields: [
      {
        path: "email",
        keyId: encryptionKey,
        bsonType: "string"
      }
    ]
  }
})

// Enable encryption at rest in configuration
// Your code here

Need a hint?

Set const enableEncryptionAtRest = true to enable encryption.