Drivers

← MongoDB Feedback Engine

How can we improve the MongoDB Drivers?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback

  1. CSFLE - Integration with more KMS providers like Hashicorp Vault

    Automatic CSFLE - To generate and manage the Customer Master key, can we add more KMS providers like Hashicorp Vault. KMS providers currently supported are only: Amazon Web Services KMS and Locally Managed Keyfile.

    To work with Hashicorp Vault, it seems, we need to choose Locally Managed Keyfile as the KMS provider. This means that the Master key will be fetched from Vault in memory and then used in the code to encrypt/decrypt the DEK (Data Encryption Key). Ideally, the decryption of DEK should happen in the vault itself as a best practice, and master key should not be brought…

    9 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Add a new driver  ·  Flag idea as inappropriate…  ·  Admin →
    planned  ·  AdminRachelle (Admin, MongoDB) responded

    Hi all,
    With the release of server 5.0 this coming July, we will also GA our integration with Azure and GCP as KMS providers. Hashicorp Vault is planned for later in 2021, along with generic or custom built key management solution support.

  • Don't see your idea?

Drivers

Categories

Feedback and Knowledge Base

(thinking…)