公开(公告)号：US12197597B2

公开(公告)日：2025-01-14

申请号：US18321721

申请日：2023-05-22

Applicant: MongoDB, Inc.

Inventor： Kenneth White ,  Mark Benvenuto ,  Kevin Albertson ,  David Lenox Storch ,  Eliot Horowitz

IPC: G06F21/62 ,  G06F16/21 ,  G06F21/60 ,  H04L9/14

Abstract: A database system comprising a database having a dynamic schema and comprising a plurality of data storage nodes; and at least one processor configured to, using an encryption process: manage access to plaintext data stored in the plurality of data storage nodes by users employing at least one client-controlled resource in a client access layer; restrict access to the plaintext data by other users, wherein the other users include users with system administration privileges for the database and administrators of processing resources hosting the database; and manage access to encrypted copies of the plaintext data by the users with system administration privileges for the database such that the system administration privileges do not enable access to plaintext versions of the encrypted copies. A method for managing data security for a database. A database system with a dynamic schema architecture, a client access layer, and an operational database layer.

公开(公告)号：US20230289455A1

公开(公告)日：2023-09-14

申请号：US18321721

申请日：2023-05-22

Applicant: MongoDB, Inc.

Inventor： Kenneth White ,  Mark Benvenuto ,  Kevin Albertson ,  David Lenox Storch ,  Eliot Horowitz

IPC: G06F21/60 ,  H04L9/14 ,  G06F16/21

CPC classification number: G06F21/602 ,  H04L9/14 ,  G06F16/213

Abstract: A database system comprising a database having a dynamic schema and comprising a plurality of data storage nodes; and at least one processor configured to, using an encryption process: manage access to plaintext data stored in the plurality of data storage nodes by users employing at least one client-controlled resource in a client access layer; restrict access to the plaintext data by other users, wherein the other users include users with system administration privileges for the database and administrators of processing resources hosting the database; and manage access to encrypted copies of the plaintext data by the users with system administration privileges for the database such that the system administration privileges do not enable access to plaintext versions of the encrypted copies. A method for managing data security for a database. A database system with a dynamic schema architecture, a client access layer, and an operational database layer.

公开(公告)号：US11698981B2

公开(公告)日：2023-07-11

申请号：US16895503

申请日：2020-06-08

Applicant: MongoDB, Inc.

Inventor： Kenneth White ,  Mark Benvenuto ,  Kevin Albertson ,  David Lenox Storch ,  Eliot Horowitz

IPC: G06F16/20 ,  G06F21/60 ,  H04L9/14 ,  G06F16/21

CPC classification number: G06F21/602 ,  G06F16/213 ,  H04L9/14

Abstract: A database system comprising a database having a dynamic schema and comprising a plurality of data storage nodes; and at least one processor configured to, using an encryption process: manage access to plaintext data stored in the plurality of data storage nodes by users employing at least one client-controlled resource in a client access layer; restrict access to the plaintext data by other users, wherein the other users include users with system administration privileges for the database and administrators of processing resources hosting the database; and manage access to encrypted copies of the plaintext data by the users with system administration privileges for the database such that the system administration privileges do not enable access to plaintext versions of the encrypted copies. A method for managing data security for a database. A database system with a dynamic schema architecture, a client access layer, and an operational database layer.