Snowflake is adding new features to its Horizon Catalog, including measures against login data theft and enhanced monitoring for customer account security.
Snowflake is expanding Horizon Catalog with additional security functionality during the virtueke Build 2024 conference. For example, Horizon Catalog gets protection against login data theft via Leaked Password Protection. This automatically deactivates passwords that pop up on the dark web. The feature will become generally available soon.
read also
Snowflake aims to prevent new data breach with additional security capabilities
In addition, Snowflake is adding support for Programmatic Access Tokens (PATs), currently in private preview. These tokens enhance API authentication by limiting access to specific applications and have an expiration date. This makes it easier for developers to give applications secure access to the Snowflake environment.
Trust Center
Snowflake’s Trust Center, a security measures management center, is getting a new Threat Intelligence Scanner Package. This tool, now generally available, allows organizations to automatically identify high-risk users – both human users and services – and offers steps to mitigate the risks.
Furthermore, Snowflake is introducing custom scanner packages in collaboration with partners such as ALTR, Hunters, OneTrust, Rubrik and Trustlogix. Offered as Snowflake Native Apps on the Snowflake Marketplace, these will help companies further customize their security.
In addition to the security upgrades, the Horizon Catalog includes new functionality such as the Lineage Visualization Interface for data and machine learning assets and a synthetic data generation tool, both currently in public preview. In addition, differential privacy policies were recently made generally available, helping companies better protect data through anonymization.
Located updates
Updates come timely, and especially those related to security. Earlier this year, the company found itself in a bad light, note during its own Snowflake Summit. After all, it was then revealed that several customers had fallen victim to hackers, who had made off with data. The fault lay not with Snowflake itself, but with customers’ poorly configured account security. Top of form
Surely Snowflake itself had a bit of butter on its head: policies and built-in security systems could be better or at least clearer. Since the bug, Snowflake has been improving security capabilities, including making MFA (optional) mandatory. The capabilities now announced are already helping to boost customers’ security posture. Certainly the Leaked Password Protection is important in that regard, since hackers broke in earlier this year via passwords available on the dark web. With the new features, Snowflake is taking big steps to prevent a repeat of such problems.