Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
Springer Nature Link
Log in

Enhancement of Data Level Security in MongoDB

  • Conference paper
Intelligent Distributed Computing

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 321))

  • 1930 Accesses

Abstract

Recent developments in information and web technologies have resulted in huge data outburst. This has posed challenging demands in efficiently storing and managing large volume of structured and unstructured data. Traditional relational models exposed its weakness so much so that need for new data storage and management techniques became highly desirable. This resulted in the birth of NoSQL databases. Several business houses that churn out large volume of data have been successfully using NoSQL databases to store bulk of their data. Since the prime objective of such DB’s were efficient data storage and retrieval, core security features like data security techniques, proper authentication mechanisms etc. were given least priority. MongoDB is one among the most popular NoSQL databases. It is a document oriented NoSQL database which helps in empowering business to be more agile and scalable. As MongoDB is gaining more popularity in the IT market, more and more sensitive information is being stored in it and so security issues are becoming a major concern. It does not guarantee privacy of information stored in it. This paper is about enabling security features in MongoDB for safe storage of sensitive information through “MongoKAuth” Driver, a new MongoDB client side component developed in order to automate a lot of manual configuration steps.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 129.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Okman, L., Gal-Oz, N., Gonen, Y., Gudes, E., Abramo, J.: Security issues in NoSQL databases, http://jmiller.uaa.alaska.edu/csce465fall2013/papers/okman2011.pdf

  2. MongoDB overview, http://www.mongodb.com/mongodb.overview

  3. Lane, A.: Securing big data-Security recommendations for hadoop and NoSql environment, https://securosis.com/assets/library/reports/SecuringBigData_FINAL.pdf

  4. Bhatewara, A., Waghmare, K.: Improving network scalability using NoSQL database. IJACR (December 2012)

    Google Scholar 

  5. NoSQL does not have to mean no security, http://public.dhe.ibm.com/common/ssi/ecm/en/nib03019usen/NIB03019USEN.PDF

  6. Virtual panel: Security consideration in accessing NoSQL databases, http://www.infoq.com/articles/nosql-data-security-virtual-panel

  7. Kaur, H., Kaur, J., Kaur, K.: A review on non-relational databases, their types, advantages and disadvantages. IJERT (February 2013)

    Google Scholar 

  8. MongoDB-Security weaknesses in a typical NoSQL database, http://blog.spiderlabs.com/2013/03/mongodb-security-weaknesses-in-a-typical-nosql-database.html

  9. Kerberos ubuntu documentation, https://help.ubuntu.com/community/kerberos

  10. Deploy mongodb with kerberos support, http://docs.mongodb.org/manual/tutorial/control-access-mongodb-with-kerberos-authentication

  11. Authenticate to mongodb with java driver, http://docs.monggodb.org/ecosystem/tutorial/authenticate-with-java-driver/

  12. Kerberos- community help wiki, https://help.ubuntu.com/community/kerberos

  13. MongoDB, http://en.wikipedia.org/wiki/MongoDB

  14. Lakshman, A., Malik, P.: Cassandra: a decentralized structured storage system. SIGOPS Oper. Syst. Rev. 44, 35–40 (2010), http://doi.acm.org/10.1145/1773912.1773927

    Article  Google Scholar 

  15. Securosis blog-NoSQL and no security, http://securosis.com/blog/nosql-and-nosecurity

  16. MongoDB, Officialwebsite, http://www.mongodb.org/

  17. NoSql does not have to mean no security, http://IBM-public.dhe.ibm.com/common/ssi/ecm/en/../NIB03019USEN.PDF

  18. Neuman, B.C.: Kerberos: an authentication service for computer networks. Inf. Sci. Inst., Univ. of Southern California, Marina del Rey, CA, USA

    Google Scholar 

  19. Kerberos, http://www.centos.org/docs/5/html/Deployment_Guide-en-US/chkerberos.html

  20. Arora, R.P.: Head of the Department, Computer Sc and Engg; Dehradun Institute of Technology, Garima Verma; Implementation of authentication and transaction security base on Kerberos. IJITCE (February 2011)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Amrita Cyber Security Center, Amrita Vishwa Vidyapeetham, Amritapuri, India

    Shiju Sathyadevan

  2. Department of Cyber Security Systems and Networks, Amrita Vishwa Vidyapeetham, Amritapuri, India

    Nandini Muraleedharan

  3. Fujitsu Laboratories, Sunnyvale, USA

    Sreeranga P. Rajan

Authors
  1. Shiju Sathyadevan
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Nandini Muraleedharan
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Sreeranga P. Rajan
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Shiju Sathyadevan .

Editor information

Editors and Affiliations

  1. Department of Computing and Information, The University of Melbourne, Melbourne, Victoria, Australia

    Rajkumar Buyya

  2. Indian Institute of Information Technology and Management, Trivandrum, Kerala, India

    Sabu M. Thampi

Rights and permissions

Reprints and permissions

Copyright information

© 2015 Springer International Publishing Switzerland

About this paper

Cite this paper

Sathyadevan, S., Muraleedharan, N., Rajan, S.P. (2015). Enhancement of Data Level Security in MongoDB. In: Buyya, R., Thampi, S. (eds) Intelligent Distributed Computing. Advances in Intelligent Systems and Computing, vol 321. Springer, Cham. https://doi.org/10.1007/978-3-319-11227-5_18

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-11227-5_18

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-11226-8

  • Online ISBN: 978-3-319-11227-5

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation