	US 11,698,981 B2
	Systems and methods for client-side and field-level encryption with dynamic schema databases
Kenneth White, New York, NY (US); Mark Benvenuto, New York, NY (US); Kevin Albertson, New York, NY (US); David Lenox Storch, Brooklyn, NY (US); and Eliot Horowitz, New York, NY (US)
Assigned to MongoDB, Inc., New York, NY (US)
Filed by MongoDB, Inc., New York, NY (US)
Filed on Jun. 8, 2020, as Appl. No. 16/895,503.
Claims priority of provisional application 62/861,978, filed on Jun. 14, 2019.
Prior Publication US 2020/0394317 A1, Dec. 17, 2020
Int. Cl. G06F 16/20 (2019.01); G06F 21/60 (2013.01); H04L 9/14 (2006.01); G06F 16/21 (2019.01)

CPC G06F 21/602 (2013.01) [G06F 16/213 (2019.01); H04L 9/14 (2013.01)]

20 Claims

1. A database system comprising:

a database having a dynamic schema and comprising a plurality of data storage nodes, wherein the database is configured to store at least one document; and

at least one processor configured to:

using an encryption process at a field-level in the database having the dynamic schema, enable specification of encryption in a client access layer on a minimum of at least one data field within the at least one document; and

manage access to the at least one data field within the at least one document such that:

system administration privileges for the database having the dynamic schema do not enable access to a plaintext version of the at least one data field within the at least one document, and

at least one data key enables access to the plaintext version of the at least one data field within the at least one document.