High level flow
Query from an
authenticated
client
1
ssn: "901-10-4312"
db.billing.find (
{
}
Encrypted fields are always stored, transmitted, processed, and retrieved as ciphertext, including queries
6
"Jones Glee",
"2223-0031-2200-3222",
"[email protected]t",
"+1-212-555-1234",
"901-10-4312"
name:
cardNum:
email:
phone:
ssn:
{
{
Driver
2
Provisioned
Key Provider
Cloud Provider KMS,
On-prem HSM/Key Service,
Cross-cloud KMS
"Jones Glee",
"r6EaUcgZ41Gerrwd”,
"iu233oh35sdso743",
"oR72CW4WferrSE3j",
"d76b3ad038c0e0ed"
name:
cardNum:
email:
phone:
ssn:
4
"6fbbb3f8c3a9f7a"
"f72a9a1103d88b6"
3
encrypted search tokens: "er493grt4erw..."
5