MongoDB .local Paris 2020: Les bonnes pratiques pour sécuriser MongoDB

The document provides an agenda for a MongoDB presentation, including an introduction to MongoDB's document model and how it differs from relational databases, how MongoDB brings value to clients with flexibility, performance, versatility and ease of use. It then demonstrates these qualities through MongoDB's features like rich queries, data models, and deployability anywhere. The presentation promotes MongoDB's cloud database as a service Atlas and tools like Compass. It outlines MongoDB's evolution and roadmap. It concludes by providing contact details for the presenter.

MongoDB Ops Manager is an enterprise-grade end-to-end database management, monitoring, and backup solution. Kubernetes has clearly won the orchestration-platform "wars". In this session we'll take a deep dive on how you can leverage both these technologies to host your MongoDB deployments within your Kubernetes infrastructure whether that's OpenShift, PKS, Azure AKS, or just upstream. This talk will review the core technologies, such as containers, Kubernetes, and MongoDB Ops Manager. You'll also have a chance to see real-live demos of MongoDB running on Kubernetes and managed with MongoDB Ops Manager with the MongoDB Enterprise Kubernetes Operator.

MongoDB Atlas Data Lake is a new service offered by MongoDB Atlas. Many organizations store long term, archival data in cost-effective storage like S3, GCP, and Azure Blobs. However, many of them do not have robust systems or tools to effectively utilize large amounts of data to inform decision making. MongoDB Atlas Data Lake is a service allowing organizations to analyze their long-term data to discover a wealth of information about their business. This session will take a deep dive into the features that are currently available in MongoDB Atlas Data Lake and how they are implemented. In addition, we'll discuss future plans and opportunities and offer ample Q&A time with the engineers on the project.

- The document discusses Amadeus' large-scale use of MongoDB for applications like flight recommendations and payments. - It introduces Kubernetes operators and the MongoDB Enterprise Operator, which allows deploying and managing MongoDB clusters on Kubernetes. - The presentation includes a live demo of deploying a sharded MongoDB cluster using the MongoDB Enterprise Operator.

MongoDB Atlas Data Lake is a new service offered by MongoDB Atlas. Many organizations store long term, archival data in cost-effective storage like S3, GCP, and Azure Blobs. However, many of them do not have robust systems or tools to effectively utilize large amounts of data to inform decision making. MongoDB Atlas Data Lake is a service allowing organizations to analyze their long-term data to discover a wealth of information about their business. This session will take a deep dive into the features that are currently available in MongoDB Atlas Data Lake and how they are implemented. In addition, we'll discuss future plans and opportunities and offer ample Q&A time with the engineers on the project.

You have made a successful Proof of Concept by using Pandas for data manipulation and analysis. So, how are you going to productionize it? Come to learn how to transform your POC to a scalable product with MongoDB. Learn about pitfalls and drawbacks of Pandas and benefits of using MongoDB in the early stages.

Time series data is increasingly at the heart of modern applications - think IoT, stock trading, clickstreams, social media, and more. With the move from batch to real time systems, the efficient capture and analysis of time series data can enable organizations to better detect and respond to events ahead of their competitors or to improve operational efficiency to reduce cost and risk. Working with time series data is often different from regular application data, and there are best practices you should observe. This talk covers: Common components of an IoT solution The challenges involved with managing time-series data in IoT applications Different schema designs, and how these affect memory and disk utilization – two critical factors in application performance. How to query, analyze and present IoT time-series data using MongoDB Compass and MongoDB Charts At the end of the session, you will have a better understanding of key best practices in managing IoT time-series data with MongoDB.

To successfully implement our clients' unique use cases and data patterns, it is mandatory that we unlearn many relational concepts while designing and rapidly developing efficient applications in NoSQL. In this session, we will talk about some of our client use cases and the strategies we adopted using features of MongoDB.

Learn how MongoDB on LinuxONE and IBM Cloud Hyper Protect Services can be used to manage highly sensitive and confidential data – pervasively encrypting and securing your environments, consolidating thousands of database instances while serving hundreds of billions of queries a day. At the end of this session you will better understand how managing and scaling large amounts of critical business data can be achieved easily with automatic pervasive encryption of code and data in-flight and at-rest. If you're a Developer, Architect, DBA or a Business Stakeholder, and your organization is using or planning to use MongoDB on-premise or in the cloud, this session will help you to gain insights into the best way to run MongoDB to keep your business safe and scaling holistically.

Data administrators face the challenge of integrating disparate data technologies into a cohesive and performant data platform. This is especially true when using diverse query languages and protocols. This session will focus on how to integrate SQL-aware applications into a MongoDB data platform.

MongoDB has been conceived for the cloud age. Making sure that MongoDB is compatible and performant around cloud providers is mandatory to achieve complete integration with platforms and systems. Azure is one of biggest IaaS platforms available and very popular amongst developers that work on Microsoft Stack.

Scott Jehl of Filament Group discussed building responsive and responsible websites. He advocated for a layered approach using progressive enhancement. This involves a basic mobile-first experience enhanced for newer browsers. Images and layout adapt to different screensizes using responsive design principles. Accessibility, performance, and usability were highlighted as key areas of responsibility.

This presentation discusses migrating data from other data stores to MongoDB Atlas. It begins by explaining why MongoDB and Atlas are good choices for data management. Several preparation steps are covered, including sizing the target Atlas cluster, increasing the source oplog, and testing connectivity. Live migration, mongomirror, and dump/restore options are presented for migrating between replicasets or sharded clusters. Post-migration steps like monitoring and backups are also discussed. Finally, migrating from other data stores like AWS DocumentDB, Azure CosmosDB, DynamoDB, and relational databases are briefly covered.

A Free New World: Atlas Free Tier and How It Was Born Speaker: Louisa Berger, Senior Software Engineer Speaker: Vincent Do, Fullstack Engineer, MongoDB Level: 200 (Intermediate) Track: How We Build MongoDB Last year, MongoDB released Atlas – a new Database as as Service product that takes handles running, monitoring, and maintaining your MongoDB deployment in the Cloud. This winter, we added a new Free Tier option to the product, which allows users to try out Atlas with their own real data for free. Lead Automation engineer Louisa Berger and Atlas engineer Vincent Do will talk about how it works behind the scenes, and why you might want to try out Atlas. This talk is intended for developers, and will take you through the technical details of the architecture, and show you the techniques and challenges in building a multi-tenant MongoDB. What You Will Learn: - Insights on how/why you should use the Atlas free tier - How the Atlas free tier was designed and implemented - Best practices for building a multi-tenant MongoDB application

MongoDB Stitch allows developers to easily access and integrate MongoDB databases with key services. It provides integrated rules, functions and SDKs to handle complex connection logic and orchestrate databases and third party services. Requests made through Stitch applications are parsed, services are orchestrated, rules are applied, and results are returned to clients. Stitch offers scalable hosted JavaScript functions and declarative access controls to securely manage data and service access.

How do you determine whether your MongoDB Atlas cluster is over provisioned, whether the new feature in your next application release will crush your cluster, or when to increase cluster size based upon planned usage growth?  MongoDB Atlas provides over a hundred metrics enabling visibility into the inner workings of MongoDB performance, but how do apply all this information to make capacity planning decisions? This presentation will enable you to effectively analyze your MongoDB performance to optimize your MongoDB Atlas spend and ensure smooth application operation into the future.

Data administrators face the challenge of integrating disparate data technologies into a cohesive and performant data platform. This is especially true when using diverse query languages and protocols. This session will focus on how to integrate SQL-aware applications into a MongoDB data platform.

Presented by: Abstract: MongoDB Stitch is our new Backend as a Service (BaaS) that makes it easy for developers to create and launch applications across mobile and web platforms. Stitch provides a REST API on top of MongoDB with read, write, and validation rules built-in and full integration with the services you love. This talk will cover the what, why, and how of MongoDB Stitch. We’ll discuss everything from features to the architecture. You’ll walk away knowing how Stitch can kickstart your new project or take your existing application to the next level.

Speaker: Drew DiPalma Come learn more about MongoDB Stitch – Our new Backend as a Service (BaaS) that makes it easy for developers to create and launch applications across mobile and web platforms. Stitch provides a REST API on top of MongoDB with read, write, and validation rules built-in and full integration with the services you love. This talk will cover the what, why, and how of MongoDB Stitch. We’ll discuss everything from features to the architecture. You’ll walk away knowing how Stitch can kickstart your new project or take your existing application to the next level. What You Will Learn: The basics of MongoDB Stitch, its architecture, and features How to use Stitch to kickstart new projects or build on top of existing projects. How to integrate your favourite services with your MongoDB application.

In this webinar, we walked through examples of the general security threats to databases. And we looked at how you can mitigate them for MongoDB deployments.

Presented by Mat Keep, Principal Product Manager, MongoDB Security is more critical than ever with new computing environments in the cloud and expanding access to the Internet. There are a number of security protection mechanisms available for MongoDB to ensure you have a stable and secure architecture for your deployment. We'll walk through general security threats to databases and specifically how they can be mitigated for MongoDB deployments. Topics will include: - General security tools - How to configure those for MongoDB - Security features available in MongoDB such as LDAP, SSL, x.509, authentication, and encryption

Presented by Mat Keep, Principal Product Manager, MongoDB Security is more critical than ever with new computing environments in the cloud and expanding access to the Internet. There are a number of security protection mechanisms available for MongoDB to ensure you have a stable and secure architecture for your deployment. We'll walk through general security threats to databases and specifically how they can be mitigated for MongoDB deployments. Topics will include: - General security tools - How to configure those for MongoDB - Security features available in MongoDB such as LDAP, SSL, x.509, authentication, and encryption

Slidedeck presented at http://devternity.com/ around MongoDB internals. We review the usage patterns of MongoDB, the different storage engines and persistency models as well has the definition of documents and general data structures.

MongoDB Stitch is a serverless platform designed to help you easily and securely build an application on top of MongoDB Atlas. It lets developers focus on building applications rather than on managing data manipulation code, service integration, or backend infrastructure. MongoDB Stitch also makes it simple to respond to backend changes immediately, allowing you to simplify client side code and build complex flows more easily. This talk will cover ways that MongoDB Stitch helps you respond to changes in your database and take your applications to the next level.

MongoDB Stitch is a platform that allows developers to easily access MongoDB databases and integrate with key services. It provides native SDKs, integrated rules and functions to build scalable backends. Requests made through Stitch are parsed, services are orchestrated, rules are applied, and results are returned to clients. Stitch handles authentication, authorization and access controls through user profiles and declarative rules. It is a unified solution for building complete applications that connect to MongoDB and external services securely.

Many applications with high-sensitivity workloads require enhanced technical options to control and limit access to confidential and regulated data. In some cases, system requirements or compliance obligations dictate a separation of duties for staff operating the database and those who maintain the application layer. In cloud-hosted environments, certain data are sometimes deemed too sensitive to store on third-party infrastructure. This is a common pain for system architects in the healthcare, finance, and consumer tech sectors — the benefits of managed, easily expanded compute and storage have been considered unavailable because of data confidentiality and privacy concerns. This session will take a deep dive into new security capabilities in MongoDB 4.2 that address these scenarios, by enabling native client-side field-level encryption, using customer-managed keys. We will review how confidential data can be securely stored and easily accessed by applications running on MongoDB. Common query design patterns will be presented, with example code demonstrating strong end-to-end encryption in Atlas or on-premise. Implications for developers and others designing systems in regulated environments will be discussed, followed by a Q&A with senior MongoDB security engineers.

Evolving Data Access with MongoDB Stitch Stitch is a platform for building applications that provides 4 services - QueryAnywhere, Functions, Mobile Sync, and Triggers. QueryAnywhere allows applications to safely execute MongoDB queries. Functions enable integrating server-side logic and cloud services. Mobile Sync synchronizes data between mobile devices and backend databases. Triggers allow applications to react to database changes in real-time. Stitch uses filters, roles, and rules to provide flexible and fine-grained access control when applications interact with and access data through Stitch and its SDKs, APIs, and integrated services. The roadmap for Stitch includes expanding availability, adding additional authentication options and services, and improving SDKs.

New encryption capabilities in MongoDB 4.2 provide client-side field-level encryption that protects sensitive data. The encryption is performed by the client drivers using modern cryptography, keeping encrypted fields opaque to the database server and operators. This allows individual fields to be encrypted per document with customer-managed keys. The presentation provides a history of database security methods and covers the new encryption in terms of design, cryptography used, and developer experience. A code example demonstrates how to configure and use the new encryption capabilities.

Security is more critical than ever with new computing environments in the cloud and expanding access to the Internet. There are a number of security protection mechanisms available for MongoDB to ensure you have a stable and secure architecture for your deployment. We'll walk through general security threats to databases and specifically how they can be mitigated for MongoDB deployments.

Long live RDBMs! For years they have been a staple of large data set storage, manipulation & retrieval. But what if I told you that we were able to simplify every aspect of our new ODS; from data maintenance and implementation to API design, scalability and maintainability by doing one simple thing?

Nowadays data-driven products in the cloud are delivered faster, IT resources become more responsive and productive with lower costs and higher performance for data operations. Causing Cyber Security risks involved in accessing sensitive data and regulatory compliance requirements.

When we speak about security, the actual reality is that companies need to comply with multiples frameworks and regulations, and assessing which rules apply to each organization is no easy feat. Over the talk, we will revisit the security feature we can implement in the #MongoDB environment. The aim is to provide further information on what you can use to help your company with future security implementations. The topics presented will be: * Authentication * Authorization * TLS/SSL * External Authentication * Auditing * Log Redaction * Encryption – Data at Rest and Client Field Encryption. Speaker: Jean da Silva – Percona

You have valuable data in MongoDB and while it's important to use that data to empower your users and customers it can be tough to do so in a safe, secure way. In this session, you'll learn how to simply connect your users with the data they need using MongoDB Stitch.

The document discusses MongoDB's security features including authentication, authorization, encryption, and auditing. It emphasizes that MongoDB's security features have minimal dependencies and keep the path to secure success clear. The key features are authentication using passwords, LDAP, certificates or Kerberos; role-based authorization; encryption of data in transit using TLS and at rest using the encrypted storage engine; and auditing of operations to a configurable destination.

Presented by Austin Zellner, Solutions Architect, MongoDB Schema design is as much art as it is science, but it is central to understanding how to get the most out of MongoDB. Attendees will walk away with an understanding of how to approach schema design, what influences it, and the science behind the art. After this session, attendees will be ready to design new schemas, as well as re-evaluate existing schemas with a new mental model.

Serverless development with MongoDB Stitch allows developers to build applications without managing infrastructure. Stitch provides four main services - QueryAnywhere for data access, Functions for server-side logic, Triggers for real-time notifications, and Mobile Sync for offline data synchronization. These services integrate with MongoDB and other data sources through a unified API, and apply access controls and filters to queries. Functions can be used to build applications or enable data services, and are integrated with application context including user information, services, and values. This allows developers to write code without dealing with deployment or scaling.

This document discusses blockchains and their applications to the Internet of Things (IoT). It provides background on Bitcoin and the key characteristics of blockchain technology, including decentralization, immutability, and trusted transfer of assets. The document then outlines how blockchains could enable faster, safer, and cheaper transactions compared to traditional centralized systems. It proposes using MongoDB as the database layer for enterprise blockchain implementations due to its scalability, availability, data model flexibility, and other features. Finally, the document presents an enterprise blockchain maturity model ranging from centralized to decentralized approaches.

These days, everyone is expected to be a data analyst. But with so much data available, how can you make sense of it and be sure you're making the best decisions? One great approach is to use data visualizations. In this session, we take a complex dataset and show how the breadth of capabilities in MongoDB Charts can help you turn bits and bytes into insights.

MongoDB Kubernetes operator and MongoDB Open Service Broker are ready for production operations. Learn about how MongoDB can be used with the most popular container orchestration platform, Kubernetes, and bring self-service, persistent storage to your containerized applications. A demo will show you how easy it is to enable MongoDB clusters as an External Service using the Open Service Broker API for MongoDB