Release Notes
Release Date 2023.12.01
Features & Enhancements
- DSPM - Monitoring and Alerting in Snowflake
- Enhanced Dark Data Report: Data owners and Data Platform teams now have access to more detailed insights, featuring two critical additions – information on the size of unused objects and identification of the role responsible for object creation. This valuable data enables Data owners and Platform teams to proactively engage with individuals involved in object creation, streamlining the process for efficient cleanup when necessary.
- Enhancements in Monitoring and Alerting for Network Policy Changes: Snowflake Platform owners and Security teams now receive alerts for even more granular conditions, such as specific network policy changes made by any user within a particular role. This capability aids in closely monitoring alterations to network policies for specific service accounts, ensuring heightened security awareness.
- Enhancements to Monitoring Policy framework: Data Security officers can now track changes to an additional set of specific objects (Tables or Views) within a designated database or schema. This refined approach offers Data Security officers a more granular view, enabling them to vigilantly oversee the organization's critical assets.
- Track user login activity: Enterprise security teams can now Monitor and be alerted on cases where users are created without the MFA option turned on. This enhances login security for human users in enterprises that support BYOD and other flexible work options.
- Data Access Policies
- Snowflake Object Tagging: Data Platform teams can now utilize an automated script to seamlessly tag Snowflake objects with relevant business terms. These tagged terms will play a crucial role in implementing fine grained access controls
- UI Enhancements for Access Policy List Page: Data owners can now easily access information on which objects are secured by specific policies directly from the list page, eliminating the need to drill down into each policy individually.
- Multi-Valued Entitlements: Data owners now have the capability to define row access policies using multi-valued attributes. This streamlines policy management by reducing the number of conditions that need to be included.
Release Date 2023.09.07
Features & Enhancements
Features & Enhancements
- Key Pair Authentication
- TrustLogix now supports key pair based authentication for Snowflake data source
- Access Analyzer
- Data Owners can now leverage enhanced entitlements report. The report will now provide object and privileges granted to users on all databases.
- Users are provisioned in Snowflake via external identity management tools or within Snowflake as local users. User detail screen in Access Analyzer will show the provisioning information.
- Key Risk Indicators & Insights
- With this release there is a new dashboard that includes various key risk indicators in Snowflake, like Identity Risk, Dark Data, & Shadow IT tools. Data Security officers can leverage these insights to detect potential vulnerabilities in Snowflake Data Cloud.
- Improved User Experience for Business Entitlements and User Attribute Policies (Preview)
- Data Owners will be able to craft conditional policies for Data Masking and Row filtering using a business user friendly UI. (Please check below for a brief overview)
Release Date 2023.07.12
Features & Enhancements
- Data Security Posture Management - Client Tool Identification
- TrustLogix now displays details about various upstream and downstream client tools connecting to Snowflake and highlight the data movement. This helps the Data Security Owner to visually identify if any unlisted or spurious tools are used by data consumers.
- Data Sprawl graph is enhanced to provide a combined view of the tools that are moving the data and storage appliances where it is getting moved to. This provides Data owners proactive visibility on where the data is moving and if required enforce stricter access controls.
- Automate classification of your data with Native Snowflake Semantic analysis
- TrustLogix now facilitates easy classification of data in Snowflake, using Snowflake's native classifiers. With a single click Data Governance teams can now discover and classify personal or sensitive data. Furthermore, TrustLogix helps automate masking or anonymize the data that was identified as Sensitive by native Integrations with Snowflake Semantic Analyzer & Tag based masking policies
- S3 Tag meta data for Snowflake Stages
- TrustLogix now combines S3 tag meta data with Snowflake external stage information to provide visibility on which S3 buckets the data is moving in and out of Snowflake. This visibility helps the Data Owners to proactively take any remedial actions to block data leaving Snowflake and reaching to unauthorized S3 buckets.
- AWS Marketplace Vendor insights certification
- TrustLogix has completed risk assessment by AWS Marketplace Vendor Insights program. This helps our customers procurement teams with swift security approvals in their organizations
Release Date 2023.06.15
Features & Enhancements
- Data Security Posture Management enhancements:
- TrustLogix now identifies any potential risks for data moving from Snowflake to data visualization tools like PowerBI
- Improvements to show case any Overly Granted access or Ghost accounts in access analyzer
- One click remediations to simplify the process flows between Governance and Data Security teams.
- Improvements in identifying and remediating Identity risks in data platforms.
Release Date 2023.05.15
Features & Enhancements
- Data Security Posture Management Improvements:
- Detect your sensitive data exposure: TrustLogix now identifies and reports any data movement from Snowflake to AWS S3 public buckets
- Identify Data risks with unintended data sprawl into and out of Snowflake:
- Monitor Upstream data systems: TrustLogix now identifies data risks when you use upstream tools like Kafka that bring in sensitive data into Snowflake. The risks include abnormal size of data movement, any privacy sensitive data imported.
- Monitor Downstream data systems: Business Intelligence tools like PowerBI can connect to Snowflake and copy and move data out of Snowflake. TrustLogix now identifies possible Data Risks that are associated with Downstream tools.
- Access Analyzer Improvements: TrustLogix now made it easy for Data Owners to identify users who might pose potential risk to Snowflake Data cloud. The list of possible risky users are displayed at the top of Access Analyzer and once identified we added a easy remediation flow to disable these users with one single click.
Release Date 2023.04.30
Features & Enhancements
- Data Security Posture Management Improvements:
- Remediation workflows: As part of the data risk remediation flow, now security officers can disable Snowflake users if they are inactive for a long period.
- Data Sprawl Improvements: TrustLogix now helps Data Owners graphically visualize which client tools are used to connect to your Snowflake account and access your data. In addition to that TrustLogix also highlights any potential risky activities from these tools.
- Snowflake Access Policy Improvements:
- TrustLogix has delivered a complimentary feature that bridges an existing feature gap in Snowflake with regards to future grants on Databases and Schema. (Refer to this community blog about the feature gap)
- Schema-level future grants will be generated automatically for roles where database-level policies are defined.
- Share Management: TrustLogix has simplified how Data Owners manage Snowflake Shares. Users can securely add or remove objects from a Share with just a few clicks
- TrustLogix has delivered a complimentary feature that bridges an existing feature gap in Snowflake with regards to future grants on Databases and Schema. (Refer to this community blog about the feature gap)
Release Date 2023.03.21
Features & Enhancements
- Snowflake Access Controls: TrustLogix now simplified the creation and management of Row access and masking policies
- Streamline Row access policies by leveraging Snowflake tags: Create one row access policy that can be dynamically applied to multiple tables, views, and materialized views that have same tag. Author a single row access policy that can be flexibly applied across numerous tables, views, and materialized views sharing a common tag, thus removing the requirement of generating identical policies for each object with shared attributes.
- Masking Policies behavioral improvements: You can now create masking policies independent of Row access policies. This helps data owners in defining central masking policies
- Data Security Posture Management Improvements:
- Remediation workflows: Data Security officers can streamline data security operations, and take remedial actions from one central console. Security Officers can take remedial actions on data risks identified by TrustLogix with minimum dependency on DBAs and Data Platform Owners. The actions include revoking of overly granted roles to maintain least privilege model. Centrally manage masking of classified data by single click.