Release Notes Page

Features & Enhancements

• Key Pair Authentication
  
  • TrustLogix now supports key pair based authentication for Snowflake data source
• Access Analyzer
  
  • Data Owners can now leverage enhanced entitlements report. The report will now provide object and privileges granted to users on all databases.
  • Users are provisioned in Snowflake via external identity management tools or within Snowflake as local users. User detail screen in Access Analyzer will show the provisioning information.
• Key Risk Indicators & Insights
  • With this release there is a new dashboard that includes various key risk indicators in Snowflake, like Identity Risk, Dark Data, & Shadow IT tools. Data Security officers can leverage these insights to detect potential vulnerabilities in Snowflake Data Cloud.

• Improved User Experience for Business Entitlements and User Attribute Policies (Preview)
  • Data Owners will be able to craft conditional policies for Data Masking and Row filtering using a business user friendly UI. (Please check below for a brief overview)

• Data Security Posture Management - Client Tool Identification
  • TrustLogix now displays details about various upstream and downstream client tools connecting to Snowflake and highlight the data movement. This helps the Data Security Owner to visually identify if any unlisted or spurious tools are used by data consumers.
  • Data Sprawl graph is enhanced to provide a combined view of the tools that are moving the data and storage appliances where it is getting moved to. This provides Data owners proactive visibility on where the data is moving and if required enforce stricter access controls.
• Automate classification of your data with Native Snowflake Semantic analysis
  • TrustLogix now facilitates easy classification of data in Snowflake, using Snowflake's native classifiers. With a single click Data Governance teams can now discover and classify personal or sensitive data. Furthermore, TrustLogix helps automate masking or anonymize the data that was identified as Sensitive by native Integrations with Snowflake Semantic Analyzer & Tag based masking policies
• S3 Tag meta data for Snowflake Stages
  • TrustLogix now combines S3 tag meta data with Snowflake external stage information to provide visibility on which S3 buckets the data is moving in and out of Snowflake. This visibility helps the Data Owners to proactively take any remedial actions to block data leaving Snowflake and reaching to unauthorized S3 buckets.
• AWS Marketplace Vendor insights certification
  • TrustLogix has completed risk assessment by AWS Marketplace Vendor Insights program. This helps our customers procurement teams with swift security approvals in their organizations

• Data Security Posture Management enhancements:
  • TrustLogix now identifies any potential risks for data moving from Snowflake to data visualization tools like PowerBI
  • Improvements to show case any Overly Granted access or Ghost accounts in access analyzer
  • One click remediations to simplify the process flows between Governance and Data Security teams.
  • Improvements in identifying and remediating Identity risks in data platforms.

• Data Security Posture Management Improvements:
  • Detect your sensitive data exposure: TrustLogix now identifies and reports any data movement from Snowflake to AWS S3 public buckets

• Identify Data risks with unintended data sprawl into and out of Snowflake:
  • Monitor Upstream data systems: TrustLogix now identifies data risks when you use upstream tools like Kafka that bring in sensitive data into Snowflake. The risks include abnormal size of data movement, any privacy sensitive data imported.
  • Monitor Downstream data systems: Business Intelligence tools like PowerBI can connect to Snowflake and copy and move data out of Snowflake. TrustLogix now identifies possible Data Risks that are associated with Downstream tools.
• Access Analyzer Improvements: TrustLogix now made it easy for Data Owners to identify users who might pose potential risk to Snowflake Data cloud. The list of possible risky users are displayed at the top of Access Analyzer and once identified we added a easy remediation flow to disable these users with one single click.

• Data Security Posture Management Improvements:
  • Remediation workflows: As part of the data risk remediation flow, now security officers can disable Snowflake users if they are inactive for a long period.
• Data Sprawl Improvements: TrustLogix now helps Data Owners graphically visualize which client tools are used to connect to your Snowflake account and access your data. In addition to that TrustLogix also highlights any potential risky activities from these tools.
• Snowflake Access Policy Improvements:
  • TrustLogix has delivered a complimentary feature that bridges an existing feature gap in Snowflake with regards to future grants on Databases and Schema. (Refer to this community blog about the feature gap)
    • Schema-level future grants will be generated automatically for roles where database-level policies are defined.
  • Share Management: TrustLogix has simplified how Data Owners manage Snowflake Shares. Users can securely add or remove objects from a Share with just a few clicks

• Snowflake Access Controls: TrustLogix now simplified the creation and management of Row access and masking policies
  • Streamline Row access policies by leveraging Snowflake tags: Create one row access policy that can be dynamically applied to multiple tables, views, and materialized views that have same tag. Author a single row access policy that can be flexibly applied across numerous tables, views, and materialized views sharing a common tag, thus removing the requirement of generating identical policies for each object with shared attributes.
  • Masking Policies behavioral improvements: You can now create masking policies independent of Row access policies. This helps data owners in defining central masking policies
• Data Security Posture Management Improvements:
  • Remediation workflows: Data Security officers can streamline data security operations, and take remedial actions from one central console. Security Officers can take remedial actions on data risks identified by TrustLogix with minimum dependency on DBAs and Data Platform Owners. The actions include revoking of overly granted roles to maintain least privilege model. Centrally manage masking of classified data by single click.