|
|
|
|
|
|
by giaour
1478 days ago
|
|
|
> It doesn't matter if the end client is submitting queries in plain text (protected in transit) or this fancy encryption It's not just the query that is encrypted in this case, but the data being queried. From MongoDB's description, the server never receives or stores plaintext data, and the query results can only be decrypted by a client who has the same key that was used to encrypt the data in the first place. From a compliance perspective, that's amazing if it works. It means the server is never storing or processing anything but ciphertext. |
|
|