Asynchronous Java Driver Blog     About     Archive     Feed

MongoDB, TLS, and x.509 Authentication Deep Dive

MongoDB has a growing number of security features. One of the core features is also one that is commonly misunderstood: TLS (Transport Layer Security) which is also known as SSL (Secure Sockets Layer). In addition to the encryption of the data while in transit over the network MongoDB also relies on the passing of x.509 certificates to provide the basis for MONGODB_X509 authentication. Many of the common pitfalls when using TLS and x.509 authentication are based on misunderstanding of either TLS or how x.509 authentication is achieved and its requirements for the way the TLS connection is created. Read on.

Caching Strings

Who would have thought that caching strings could be so hard. We tell the tale of how the string cache in the driver went from simple to complex and part of the way back. Read on.

(Early) Targeted Routing Benchmarks

With an understanding of what targeted routing is, how it works and a theory for the performance gains it is time to see what we can expect from performance. Read on.

Targeted Routing Deployment

With an understanding of targeted routing we now describe how to deploy a cluster to support targetted routing and then enabling it within the driver's extensions. Read on.

Introducing Targeted Routing

We now know what taking over the routing function from the mongos will look like but we also recognize the risk. We now look at a middle ground solution we call Targeted Routing. Read on.