Challenges

Unprotected sensitive data leads to identity theft, fraud, and theft of financial resources from employees and customers. If data is not encrypted it will travel in plain text format from source to destination and it will lead to a 'Man in the Middle' attack.

The teams at Harappa had been using the MongoDB atlas in their project extensively and their DB was not encrypted both in Transit and at rest. As their DB was not encrypted there was a high risk for theft of financial data and misuse of data.

Searce Solution

As part of the project Searce implemented MongoDB Atlas Encryption at Rest and Encryption in Transit by using AWS KMS Service and Established Private communication between MongoDB Atlas VPC and the Harappa VPC by using the concept of Private link. The Searce solution involved the below steps.

• Creating the private endpoint between AWS VPC and MongoDB atlas VPC
• Creating the KMS keys from the AWS KMS service
• Enabling the Encryption at rest using the KMS keys
• Enabling the Encryption in Transit using the SSL certificate

Business Impact

The Searce solution helped the organization enable encryption of their existing mongoDB atlas database which helped them overcome security issues.

As the DB is encrypted, the data will travel from source to destination in an encrypted format. This reduced the high risk for theft of financial data, misuse of data and also Man in the Middle attack.