The latest articles on DEV Community by Fabrice Le Coz (@fablec). https://dev.to/fablec https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F432068%2Fd5ae2636-4419-4a9d-9f74-209bc2eeb385.png https://dev.to/fablec en Fabrice Le Coz Wed, 18 Feb 2026 13:52:37 +0000 https://dev.to/fablec/using-encrypted-fields-with-mongodb-community-5d1o https://dev.to/fablec/using-encrypted-fields-with-mongodb-community-5d1o <p>When working with sensitive user data—emails, phone numbers, birth dates—you need to secure it properly, even if you're using the open-source MongoDB Community edition (which doesn't support native field-level encryption).</p> <p>This article explains how to implement robust and flexible field-level encryption in your Node.js, Bun, or Deno project, including:</p> <ul> <li>🔐 Encrypting sensitive fields using AES-256-GCM</li> <li>🔍 Searching encrypted data by exact match or date range</li> <li>🔄 Supporting key rotation</li> <li>✅ Staying compliant with regulations like GDPR</li> </ul> <h2> 🔑 Why Field-Level Encryption? </h2> <p>Storing encrypted values instead of plain text ensures:</p> <ul> <li>Data remains protected even if the database is leaked</li> <li>Exposure is limited if app serialization or logs are compromised</li> <li>Fine-grained control over access and auditability</li> </ul> <h2> ✅ GDPR Considerations </h2> <p>Encrypting personal data is highly encouraged by GDPR (Article 32). This strategy helps you:</p> <ul> <li>Reduce risk of data breaches</li> <li>Comply with the principle of data minimization</li> <li>Demonstrate responsibility during audits</li> </ul> <p>But encryption alone doesn't exempt you from other obligations (e.g. access, erasure, data limitation). Use it as part of a broader data protection strategy.</p> <h2> 🔐 Encryption Algorithm: AES-256-GCM </h2> <p>Each encrypted field is represented as a <code>cipherValue</code>, which is a base64 encoding of a binary buffer made of three parts:</p> <ul> <li>12 bytes of randomly generated Initialization Vector (IV)</li> <li>16 bytes of authentication tag (GCM integrity check)</li> <li>The actual encrypted content (ciphertext)</li> </ul> <p>This format — <code>[IV][TAG][CIPHERTEXT]</code> — ensures deterministic and secure parsing during decryption, regardless of the encrypted field size.</p> <p>We use AES-256-GCM which provides:</p> <ul> <li>Confidentiality (via symmetric encryption)</li> <li>Integrity (via built-in authentication tag)</li> <li>Unique IV per field (generated randomly)</li> </ul> <p>Encrypted data is stored as base64-encoded <code>cipherValue</code>, optionally accompanied by a SHA-256 <code>hash</code> for search and a <code>ulid</code> for date indexing.</p> <h3> 📦 Example: Encrypted Document Structure </h3> <p>We use a consistent object structure per sensitive field. This makes it easy to manage, validate, and decrypt data consistently, while also allowing:</p> <ul> <li>Indexing with <code>hash</code> for exact match queries</li> <li>Range querying with <code>ulid</code> for dates</li> <li>Audit and compliance support via metadata like <code>keyId</code> </li> </ul> <p>This field-level encapsulation ensures clarity and safety across all access and storage layers.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"firstname"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Alice"</span><span class="p">,</span><span class="w"> </span><span class="nl">"lastname"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Durand"</span><span class="p">,</span><span class="w"> </span><span class="nl">"email"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"cipherValue"</span><span class="p">:</span><span class="w"> </span><span class="s2">"..."</span><span class="p">,</span><span class="w"> </span><span class="nl">"hash"</span><span class="p">:</span><span class="w"> </span><span class="s2">"..."</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"phone"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"cipherValue"</span><span class="p">:</span><span class="w"> </span><span class="s2">"..."</span><span class="p">,</span><span class="w"> </span><span class="nl">"hash"</span><span class="p">:</span><span class="w"> </span><span class="s2">"..."</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"birthDate"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"cipherValue"</span><span class="p">:</span><span class="w"> </span><span class="s2">"..."</span><span class="p">,</span><span class="w"> </span><span class="nl">"ulid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"01HY..."</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> 🧱 Generic Field Encryption Function </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">encryptField</span><span class="p">(</span><span class="nx">value</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="p">{</span> <span class="nl">cipherValue</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">hash</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">ulid</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">iv</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">randomBytes</span><span class="p">(</span><span class="mi">12</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">cipher</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createCipheriv</span><span class="p">(</span><span class="dl">"</span><span class="s2">aes-256-gcm</span><span class="dl">"</span><span class="p">,</span> <span class="nx">ENCRYPTION_KEY</span><span class="p">,</span> <span class="nx">iv</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">encrypted</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="nf">concat</span><span class="p">([</span><span class="nx">cipher</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="nx">value</span><span class="p">,</span> <span class="dl">"</span><span class="s2">utf8</span><span class="dl">"</span><span class="p">),</span> <span class="nx">cipher</span><span class="p">.</span><span class="nf">final</span><span class="p">()]);</span> <span class="kd">const</span> <span class="nx">tag</span> <span class="o">=</span> <span class="nx">cipher</span><span class="p">.</span><span class="nf">getAuthTag</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="nf">concat</span><span class="p">([</span><span class="nx">iv</span><span class="p">,</span> <span class="nx">tag</span><span class="p">,</span> <span class="nx">encrypted</span><span class="p">]);</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="p">{</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">payload</span><span class="p">.</span><span class="nf">toString</span><span class="p">(</span><span class="dl">"</span><span class="s2">base64</span><span class="dl">"</span><span class="p">),</span> <span class="na">hash</span><span class="p">:</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createHash</span><span class="p">(</span><span class="dl">"</span><span class="s2">sha256</span><span class="dl">"</span><span class="p">).</span><span class="nf">update</span><span class="p">(</span><span class="nx">value</span><span class="p">).</span><span class="nf">digest</span><span class="p">(</span><span class="dl">"</span><span class="s2">hex</span><span class="dl">"</span><span class="p">)</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">maybeDate</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">value</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nf">isNaN</span><span class="p">(</span><span class="nx">maybeDate</span><span class="p">))</span> <span class="p">{</span> <span class="nx">result</span><span class="p">.</span><span class="nx">ulid</span> <span class="o">=</span> <span class="nf">ulid</span><span class="p">(</span><span class="nx">maybeDate</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">result</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h3> 🔓 Decrypting Encrypted Values </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">decryptField</span><span class="p">(</span><span class="nx">cipherValue</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="kr">string</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">buffer</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="nx">cipherValue</span><span class="p">,</span> <span class="dl">"</span><span class="s2">base64</span><span class="dl">"</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">iv</span> <span class="o">=</span> <span class="nx">buffer</span><span class="p">.</span><span class="nf">subarray</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">12</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">tag</span> <span class="o">=</span> <span class="nx">buffer</span><span class="p">.</span><span class="nf">subarray</span><span class="p">(</span><span class="mi">12</span><span class="p">,</span> <span class="mi">28</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">ciphertext</span> <span class="o">=</span> <span class="nx">buffer</span><span class="p">.</span><span class="nf">subarray</span><span class="p">(</span><span class="mi">28</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">decipher</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createDecipheriv</span><span class="p">(</span><span class="dl">"</span><span class="s2">aes-256-gcm</span><span class="dl">"</span><span class="p">,</span> <span class="nx">ENCRYPTION_KEY</span><span class="p">,</span> <span class="nx">iv</span><span class="p">);</span> <span class="nx">decipher</span><span class="p">.</span><span class="nf">setAuthTag</span><span class="p">(</span><span class="nx">tag</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">decrypted</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="nf">concat</span><span class="p">([</span><span class="nx">decipher</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="nx">ciphertext</span><span class="p">),</span> <span class="nx">decipher</span><span class="p">.</span><span class="nf">final</span><span class="p">()]);</span> <span class="k">return</span> <span class="nx">decrypted</span><span class="p">.</span><span class="nf">toString</span><span class="p">(</span><span class="dl">"</span><span class="s2">utf8</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> 🛡️ Error Handling </h2> <p>Proper error handling is crucial when encrypting or decrypting sensitive data to avoid accidental data leaks or unexpected service interruptions.</p> <h3> 📌 Using Try-Catch </h3> <p>The classic method for handling errors in JavaScript/TypeScript involves using a <code>try-catch</code> block around sensitive operations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">decryptedEmail</span> <span class="o">=</span> <span class="nf">decryptField</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">Decrypted email:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">decryptedEmail</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error during email decryption:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="c1">// Here, you can add additional logic such as logging, notifications, etc.</span> <span class="p">}</span> </code></pre> </div> <p>This approach is simple, straightforward, and effective for one-off cases. However, it can quickly become verbose and difficult to maintain in complex applications or when errors need centralized handling.</p> <h3> 🚀 Functional Approach with neverthrow </h3> <p>For more explicit and functional error handling, the <code>[neverthrow](https://github.com/supermacro/neverthrow)</code> library is recommended. It uses the <code>Result</code> paradigm to clearly and predictably handle success and failure cases.</p> <p>Here's an example implementation using <code>neverthrow</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">Result</span><span class="p">,</span> <span class="nx">err</span><span class="p">,</span> <span class="nx">ok</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">neverthrow</span><span class="dl">"</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">decryptFieldSafe</span><span class="p">(</span><span class="nx">cipherValue</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nx">Result</span><span class="o">&lt;</span><span class="kr">string</span><span class="p">,</span> <span class="nb">Error</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">decryptedValue</span> <span class="o">=</span> <span class="nf">decryptField</span><span class="p">(</span><span class="nx">cipherValue</span><span class="p">);</span> <span class="k">return</span> <span class="nf">ok</span><span class="p">(</span><span class="nx">decryptedValue</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nf">err</span><span class="p">(</span><span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`Decryption failed: </span><span class="p">${</span><span class="nx">error</span><span class="p">}</span><span class="s2">`</span><span class="p">));</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// Usage example</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="nf">decryptFieldSafe</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">);</span> <span class="nx">result</span><span class="p">.</span><span class="nf">match</span><span class="p">(</span> <span class="p">(</span><span class="nx">email</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">Decrypted email:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">email</span><span class="p">),</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">)</span> <span class="p">);</span> </code></pre> </div> <h4> 🎯 Advantages of <code>neverthrow</code> </h4> <ul> <li>Clear separation between success and failure paths.</li> <li>Easier composition of operations, especially using <code>.andThen()</code>.</li> <li>Reduces spaghetti code from deeply nested <code>try-catch</code> statements.</li> </ul> <h4> 🔄 Chaining Operations </h4> <p><code>neverthrow</code> also supports elegant chaining of sensitive operations, which is especially useful when multiple decryption or validation steps need to occur sequentially:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nf">decryptFieldSafe</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">)</span> <span class="p">.</span><span class="nf">andThen</span><span class="p">((</span><span class="nx">email</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nf">validateEmailFormat</span><span class="p">(</span><span class="nx">email</span><span class="p">))</span> <span class="p">.</span><span class="nf">match</span><span class="p">(</span> <span class="p">(</span><span class="nx">validatedEmail</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">Validated email:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">validatedEmail</span><span class="p">),</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Validation error:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">)</span> <span class="p">);</span> </code></pre> </div> <p>This approach significantly enhances code readability and maintainability by reducing excessive nesting.</p> <p>Choose the most suitable approach for your project based on the complexity of your business logic and your preferences regarding error handling.</p> <h2> 🔎 Search functionality </h2> <h3> 🔎 Exact Match Search with SHA-256 Hash </h3> <p>To search an encrypted field (like <code>email</code>), store a SHA-256 hash:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">hash</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createHash</span><span class="p">(</span><span class="dl">"</span><span class="s2">sha256</span><span class="dl">"</span><span class="p">).</span><span class="nf">update</span><span class="p">(</span><span class="nx">email</span><span class="p">).</span><span class="nf">digest</span><span class="p">(</span><span class="dl">"</span><span class="s2">hex</span><span class="dl">"</span><span class="p">);</span> <span class="nx">db</span><span class="p">.</span><span class="nx">users</span><span class="p">.</span><span class="nf">find</span><span class="p">({</span> <span class="dl">"</span><span class="s2">email.hash</span><span class="dl">"</span><span class="p">:</span> <span class="nx">hash</span> <span class="p">});</span> </code></pre> </div> <p>This enables fast indexed lookups while keeping the actual email encrypted.</p> <h3> 📅 Date Range Search with ULID </h3> <p>ULIDs are time-sortable and can be generated from timestamps. They're useful for encrypted date fields:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">fromUlid</span> <span class="o">=</span> <span class="nf">ulid</span><span class="p">(</span><span class="nx">fromDate</span><span class="p">.</span><span class="nf">getTime</span><span class="p">());</span> <span class="kd">const</span> <span class="nx">toUlid</span> <span class="o">=</span> <span class="nf">ulid</span><span class="p">(</span><span class="nx">toDate</span><span class="p">.</span><span class="nf">getTime</span><span class="p">());</span> <span class="nx">db</span><span class="p">.</span><span class="nx">users</span><span class="p">.</span><span class="nf">find</span><span class="p">({</span> <span class="dl">"</span><span class="s2">birthDate.ulid</span><span class="dl">"</span><span class="p">:</span> <span class="p">{</span> <span class="na">$gte</span><span class="p">:</span> <span class="nx">fromUlid</span><span class="p">,</span> <span class="na">$lte</span><span class="p">:</span> <span class="nx">toUlid</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <p>This avoids exposing birth dates while allowing range filters.</p> <h2> 🛠️ Practical recommendations </h2> <ul> <li>Use an encryption key from a secret manager (Vault, KMS, etc.)</li> <li>Never store sensitive data without encryption</li> <li>Add an index to the <code>email.hash</code>, <code>telephone.hash</code>, and <code>birthDate.ulid</code> fields</li> <li>Store only the date of birth in encrypted form</li> </ul> <p>indexes creation example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">db</span><span class="p">.</span><span class="nx">users</span><span class="p">.</span><span class="nf">createIndex</span><span class="p">({</span> <span class="dl">"</span><span class="s2">email.hash</span><span class="dl">"</span><span class="p">:</span> <span class="mi">1</span> <span class="p">});</span> <span class="nx">db</span><span class="p">.</span><span class="nx">users</span><span class="p">.</span><span class="nf">createIndex</span><span class="p">({</span> <span class="dl">"</span><span class="s2">phone.hash</span><span class="dl">"</span><span class="p">:</span> <span class="mi">1</span> <span class="p">});</span> <span class="nx">db</span><span class="p">.</span><span class="nx">users</span><span class="p">.</span><span class="nf">createIndex</span><span class="p">({</span> <span class="dl">"</span><span class="s2">birthDate.ulid</span><span class="dl">"</span><span class="p">:</span> <span class="mi">1</span> <span class="p">});</span> </code></pre> </div> <h2> 🧩 Abstracting Encryption Logic (Functional Style) </h2> <p>Instead of repeating encryption logic everywhere, use two transformation functions:</p> <ul> <li> <code>encryptUserForStorage(user: PlainUser)</code> → Mongo document ready to insert</li> <li> <code>decryptUserFromDocument(doc: MongoUser)</code> → Object usable in the application</li> </ul> <p>This centralizes sensitive logic and prevents errors.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">encryptUserForStorage</span><span class="p">(</span><span class="nx">user</span><span class="p">:</span> <span class="nx">PlainUser</span><span class="p">):</span> <span class="nx">MongoUser</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">firstname</span><span class="p">:</span> <span class="nx">user</span><span class="p">.</span><span class="nx">firstname</span><span class="p">,</span> <span class="na">lastname</span><span class="p">:</span> <span class="nx">user</span><span class="p">.</span><span class="nx">lastname</span><span class="p">,</span> <span class="na">email</span><span class="p">:</span> <span class="nf">encryptField</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">),</span> <span class="na">telephone</span><span class="p">:</span> <span class="nf">encryptField</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">telephone</span><span class="p">),</span> <span class="na">birthDate</span><span class="p">:</span> <span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">enc</span> <span class="o">=</span> <span class="nf">encryptField</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">birthDate</span><span class="p">.</span><span class="nf">toISOString</span><span class="p">());</span> <span class="k">return</span> <span class="p">{</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">enc</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">,</span> <span class="na">ulid</span><span class="p">:</span> <span class="nx">enc</span><span class="p">.</span><span class="nx">ulid</span><span class="o">!</span> <span class="p">};</span> <span class="p">})()</span> <span class="p">};</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">decryptUserFromDocument</span><span class="p">(</span><span class="nx">doc</span><span class="p">:</span> <span class="nx">MongoUser</span><span class="p">):</span> <span class="nx">PlainUser</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">firstname</span><span class="p">:</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">firstname</span><span class="p">,</span> <span class="na">lastname</span><span class="p">:</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">lastname</span><span class="p">,</span> <span class="na">email</span><span class="p">:</span> <span class="nf">decryptField</span><span class="p">(</span><span class="nx">doc</span><span class="p">.</span><span class="nx">email</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">),</span> <span class="na">telephone</span><span class="p">:</span> <span class="nf">decryptField</span><span class="p">(</span><span class="nx">doc</span><span class="p">.</span><span class="nx">telephone</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">),</span> <span class="na">birthDate</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nf">decryptField</span><span class="p">(</span><span class="nx">doc</span><span class="p">.</span><span class="nx">birthDate</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">))</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <h3> 🧪 Validating with Zod (v4) </h3> <p>You can also use Zod v4 to validate and type your objects. For example, you can define:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">z</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">zod</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">PlainUserSchema</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">firstname</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">lastname</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">email</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">().</span><span class="nf">email</span><span class="p">(),</span> <span class="na">telephone</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">birthDate</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nx">coerce</span><span class="p">.</span><span class="nf">date</span><span class="p">()</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">EncryptedFieldSchema</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">hash</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">ulid</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">().</span><span class="nf">optional</span><span class="p">()</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">MongoUserSchema</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">firstname</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">lastname</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">email</span><span class="p">:</span> <span class="nx">EncryptedFieldSchema</span><span class="p">,</span> <span class="na">telephone</span><span class="p">:</span> <span class="nx">EncryptedFieldSchema</span><span class="p">,</span> <span class="na">birthDate</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">ulid</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">()</span> <span class="p">})</span> <span class="p">});</span> <span class="kd">type</span> <span class="nx">PlainUser</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nx">infer</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">PlainUserSchema</span><span class="o">&gt;</span><span class="p">;</span> <span class="kd">type</span> <span class="nx">MongoUser</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nx">infer</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">MongoUserSchema</span><span class="o">&gt;</span><span class="p">;</span> </code></pre> </div> <p>This ensures your data is consistent on both input and output, and allows you to get the correct TypeScript types effortlessly. typecast both formats.</p> <h2> 🔄 Key Rotation </h2> <p>Rotating encryption keys periodically is a best practice that minimizes the blast radius in case a key is ever leaked or compromised.</p> <h3> 🔄 Why rotate keys? </h3> <ul> <li>⛑ Limit damage in case of key exposure</li> <li>🔐 Comply with security standards (e.g. ISO 27001, NIS2)</li> <li>🧯 Ensure long-term cryptographic hygiene</li> </ul> <h3> ⚠️ Risks without rotation </h3> <ul> <li>If a key is exposed, all data encrypted from the beginning is compromised.</li> <li>Prolonged reuse of the same key can be vulnerable to pattern analysis attacks.</li> </ul> <h3> 🛠️ How to implement it </h3> <ul> <li>Store the <code>keyId</code> with each encrypted field</li> <li>Fetch the correct key dynamically during decryption</li> <li>Re-encrypt documents in background jobs using the new key</li> </ul> <h3> 🧠 Example: Encrypt &amp; Decrypt with keyId </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">encryptField</span><span class="p">(</span><span class="nx">value</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">keyId</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="p">{</span> <span class="nl">cipherValue</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">hash</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">keyId</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">ulid</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">iv</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">randomBytes</span><span class="p">(</span><span class="mi">12</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">cipher</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createCipheriv</span><span class="p">(</span><span class="dl">"</span><span class="s2">aes-256-gcm</span><span class="dl">"</span><span class="p">,</span> <span class="nf">getKeyFromVault</span><span class="p">(</span><span class="nx">keyId</span><span class="p">),</span> <span class="nx">iv</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">encrypted</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="nf">concat</span><span class="p">([</span><span class="nx">cipher</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="nx">value</span><span class="p">,</span> <span class="dl">"</span><span class="s2">utf8</span><span class="dl">"</span><span class="p">),</span> <span class="nx">cipher</span><span class="p">.</span><span class="nf">final</span><span class="p">()]);</span> <span class="kd">const</span> <span class="nx">tag</span> <span class="o">=</span> <span class="nx">cipher</span><span class="p">.</span><span class="nf">getAuthTag</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="nf">concat</span><span class="p">([</span><span class="nx">iv</span><span class="p">,</span> <span class="nx">tag</span><span class="p">,</span> <span class="nx">encrypted</span><span class="p">]);</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="p">{</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">payload</span><span class="p">.</span><span class="nf">toString</span><span class="p">(</span><span class="dl">"</span><span class="s2">base64</span><span class="dl">"</span><span class="p">),</span> <span class="na">hash</span><span class="p">:</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createHash</span><span class="p">(</span><span class="dl">"</span><span class="s2">sha256</span><span class="dl">"</span><span class="p">).</span><span class="nf">update</span><span class="p">(</span><span class="nx">value</span><span class="p">).</span><span class="nf">digest</span><span class="p">(</span><span class="dl">"</span><span class="s2">hex</span><span class="dl">"</span><span class="p">),</span> <span class="nx">keyId</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">maybeDate</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">value</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nf">isNaN</span><span class="p">(</span><span class="nx">maybeDate</span><span class="p">))</span> <span class="nx">result</span><span class="p">.</span><span class="nx">ulid</span> <span class="o">=</span> <span class="nf">ulid</span><span class="p">(</span><span class="nx">maybeDate</span><span class="p">);</span> <span class="k">return</span> <span class="nx">result</span><span class="p">;</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">decryptFieldWithKeyId</span><span class="p">(</span><span class="nx">cipherValue</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">keyId</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="kr">string</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">buffer</span> <span class="o">=</span> <span class="nx">Buffer</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="nx">cipherValue</span><span class="p">,</span> <span class="dl">"</span><span class="s2">base64</span><span class="dl">"</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">iv</span> <span class="o">=</span> <span class="nx">buffer</span><span class="p">.</span><span class="nf">subarray</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">12</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">tag</span> <span class="o">=</span> <span class="nx">buffer</span><span class="p">.</span><span class="nf">subarray</span><span class="p">(</span><span class="mi">12</span><span class="p">,</span> <span class="mi">28</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">ciphertext</span> <span class="o">=</span> <span class="nx">buffer</span><span class="p">.</span><span class="nf">subarray</span><span class="p">(</span><span class="mi">28</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">decipher</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">createDecipheriv</span><span class="p">(</span><span class="dl">"</span><span class="s2">aes-256-gcm</span><span class="dl">"</span><span class="p">,</span> <span class="nf">getKeyFromVault</span><span class="p">(</span><span class="nx">keyId</span><span class="p">),</span> <span class="nx">iv</span><span class="p">);</span> <span class="nx">decipher</span><span class="p">.</span><span class="nf">setAuthTag</span><span class="p">(</span><span class="nx">tag</span><span class="p">);</span> <span class="k">return</span> <span class="nx">Buffer</span><span class="p">.</span><span class="nf">concat</span><span class="p">([</span><span class="nx">decipher</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="nx">ciphertext</span><span class="p">),</span> <span class="nx">decipher</span><span class="p">.</span><span class="nf">final</span><span class="p">()]).</span><span class="nf">toString</span><span class="p">(</span><span class="dl">"</span><span class="s2">utf8</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> 🧪 Zod Types for Key-Aware Encrypted Fields </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">EncryptedFieldWithKeySchema</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">hash</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">keyId</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">ulid</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">().</span><span class="nf">optional</span><span class="p">()</span> <span class="p">});</span> <span class="kd">type</span> <span class="nx">EncryptedFieldWithKey</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nx">infer</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">EncryptedFieldWithKeySchema</span><span class="o">&gt;</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">MongoUserWithKeySchema</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">firstname</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">lastname</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">email</span><span class="p">:</span> <span class="nx">EncryptedFieldWithKeySchema</span><span class="p">,</span> <span class="na">telephone</span><span class="p">:</span> <span class="nx">EncryptedFieldWithKeySchema</span><span class="p">,</span> <span class="na">birthDate</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">cipherValue</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">ulid</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">(),</span> <span class="na">keyId</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">()</span> <span class="p">})</span> <span class="p">});</span> <span class="kd">type</span> <span class="nx">MongoUserWithKeyId</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nx">infer</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">MongoUserWithKeySchema</span><span class="o">&gt;</span><span class="p">;</span> </code></pre> </div> <h3> 🔁 Decrypting User with Versioned Keys </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">decryptUserFromDocumentWithKey</span><span class="p">(</span><span class="nx">doc</span><span class="p">:</span> <span class="nx">MongoUserWithKeyId</span><span class="p">):</span> <span class="nx">PlainUser</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">firstname</span><span class="p">:</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">firstname</span><span class="p">,</span> <span class="na">lastname</span><span class="p">:</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">lastname</span><span class="p">,</span> <span class="na">email</span><span class="p">:</span> <span class="nf">decryptFieldWithKeyId</span><span class="p">(</span><span class="nx">doc</span><span class="p">.</span><span class="nx">email</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">,</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">email</span><span class="p">.</span><span class="nx">keyId</span><span class="p">),</span> <span class="na">telephone</span><span class="p">:</span> <span class="nf">decryptFieldWithKeyId</span><span class="p">(</span><span class="nx">doc</span><span class="p">.</span><span class="nx">telephone</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">,</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">telephone</span><span class="p">.</span><span class="nx">keyId</span><span class="p">),</span> <span class="na">birthDate</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nf">decryptFieldWithKeyId</span><span class="p">(</span><span class="nx">doc</span><span class="p">.</span><span class="nx">birthDate</span><span class="p">.</span><span class="nx">cipherValue</span><span class="p">,</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">birthDate</span><span class="p">.</span><span class="nx">keyId</span><span class="p">))</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <h2> 🚧 Go further </h2> <h3> 🔗 Links to official documentation </h3> <ul> <li><a href="https://www.mongodb.com/docs/manual/core/security-encryption-at-rest/" rel="noopener noreferrer">MongoDB Encryption at Rest (Community Edition)</a></li> <li><a href="https://nodejs.org/api/crypto.html" rel="noopener noreferrer">Node.js Crypto Documentation</a></li> <li><a href="https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/encrypt#AES-GCM" rel="noopener noreferrer">AES-256-GCM Explained (MDN)</a></li> <li><a href="https://cheatsheetseries.owasp.org/cheatsheets/Cryptographic_Storage_Cheat_Sheet.html" rel="noopener noreferrer">OWASP Cryptographic Storage Cheat Sheet</a></li> </ul> <h3> 📚 Additional articles and tutorials </h3> <ul> <li><a href="https://github.com/ulid/spec" rel="noopener noreferrer">Understanding ULID: Universally Unique Lexicographically Sortable Identifier</a></li> <li><a href="https://www.mongodb.com/docs/manual/core/security-client-side-encryption/" rel="noopener noreferrer">Field-Level Encryption Guide for MongoDB (Official Enterprise version)</a></li> <li><a href="https://www.cnil.fr/en/gdpr-developers-guide" rel="noopener noreferrer">Guide to GDPR Compliance for Developers</a></li> <li><a href="https://github.com/supermacro/neverthrow" rel="noopener noreferrer">neverthrow Library Documentation and Examples</a></li> </ul> <h3> 🔐 Best practices in key management </h3> <ul> <li><a href="https://developer.hashicorp.com/vault/docs/about-vault/what-is-vault" rel="noopener noreferrer">HashiCorp Vault: Secrets Management</a></li> <li><a href="https://aws.amazon.com/kms/" rel="noopener noreferrer">AWS KMS: Key Management Service</a></li> <li><a href="https://cloud.google.com/kms/docs" rel="noopener noreferrer">Google Cloud KMS Documentation</a></li> </ul> <h2> ⚖️ Conclusion </h2> <p>You now have a fully encrypted document model that is future-proof, auditable, and can evolve securely as key management policies change.</p> <p>This encryption system is compatible with MongoDB Community and works with Node.js, Bun, or Deno. It allows you to combine security, compliance, and search functionality without requiring an Enterprise version.</p> <p>Happy Development &amp; Dockerizing!<br><br> Stay aware and curious!</p> database mongodb node security