Security in the Atlas Well-Architected Framework
The Security pillar of the Atlas Well-Architected Framework includes features that ensure data integrity and privacy through comprehensive safeguarding measures, such as encryption at rest and in transit, fine-grained access controls, and adherence to regulatory standards.
Use the following Atlas Architecture Center resources to learn about security in Atlas:
Network Security
MongoDB Atlas enforces mandatory TLS encryption for database connections. Restrict database access to specific IP addresses and CIDR ranges and use private endpoints and VPC peering.
Authorization and Authentication
Use Role-Based Access Control (RBAC) with built-in and custom roles to control operations on resources. Get recommendations on the best authentication method for production environments.
Data Encryption
Use encryption features in Atlas to protect data while in transit, at rest, and in use to safeguard data through its full lifecycle.
Compliance
Atlas meets a list of compliance standards to ensure that you can protect and monitor data while complying with external requirements.
Auditing and Logging
Use auditing and logs to monitor and log Atlas platform activities. Get recommendations on the events you should audit.