Skip to content
Product and Technology
MAY 13, 2016

Automatic Encryption of Data

Automatic Encryption of Data

Hopefully you had a chance to read our previous top 10 posts. As promised, we continue the series with a deeper dive into another of the Top 10 Cool Features from Snowflake:

#2 Automatic Encryption of Data

One of the biggest worries people have about moving to the cloud is security. One key piece of providing enterprise class security is the ability to encrypt the data in your data warehouse environment. With Snowflake, your data is automatically encrypted by default.

No setup, no configuration, no add-on costs for high security features. Data is encrypted during its entire lifecycle. From loading data to storing data at rest, we apply end-to-end encryption, such that only the customer can read the data, and no one else. It is just part of the Snowflake service! That is a huge win for anyone who has ever tried to set up database security of any kind. In addition, this gives Snowflake a significant advantage compared to environments like Hadoop, where encryption and security is almost almost entirely left up to the customer to implement and maintain.

So what level of encryption?

For all data within Snowflake, we use strong AES 256-bit keys. Your data is encrypted as you load it. That is the default, and you cannot turn it off. In addition, our Snowflake security framework includes additional security best practices such as the use of a hierarchical key model and regular key rotation. All of this is automatic and transparent to our customers. In this way we provide our customers best-in-class data security as a service. For even more details on our approach to end-to-end encryption and how we secure your data, check out these blogs; end to end encryption and encryption key management.

Remember the #10 Top feature – persistent result sets? Well those query results are also encrypted with 256-bit encryption keys (all the data, all the time).

So do you have your data at rest encrypted in your data warehouse today? Are your loading tools, and staging environments also encrypted?

If not, then put your data into the Snowflake Elastic Data Warehouse and rest easy knowing your data is safe and secure. Snowflake brings enterprise grade security to data warehousing in the cloud, with end-to-end encryption as a major part of our offering.

As a co-writer of this series, I would like to thank Kent Graziano, who has put in a lot of effort into bringing the thoughts behind this series to the audience. Without his persistence and vision, this would not have been possible. As always, keep an eye on this blog site, our Snowflake Twitter feed (@SnowflakeDB), (@kentgraziano), and (@cloudsommelier) for more Top 10 Cool Things About Snowflake and for updates on all the action and activities here at Snowflake Computing.

Kent Graziano and Saqib Mustafa

Share Article

RelatedContent

Snowflake Expands Supported MFA Methods and Makes Them Available by Default Everywhere

Snowflake expands MFA options with authenticator apps and passkeys, making MFA available by default on Snowsight password sign-ins to strengthen security.

The Apache Iceberg v3 Table Spec: Celebrating the Open Source Community’s Shared Success

Discover the major updates in Apache Iceberg's v3 table spec, including default values, deletion vectors, geospatial support and table encryption. Learn how community-driven development is shaping the future of open data architectures.

Automatic Concurrency Scaling in Snowflake | Snowflake Auto Scaling

Snowflake's data architecture now allows you to run massively concurrent workloads at scale in a single system. Learn more about auto scaling.

McKesson’s Cross-Cloud Data Journey - Snowflake Blog

McKesson is one of the most relied on healthcare companies. But when it comes to a cross-cloud strategy, McKesson relies on Snowflake. Read more about their journey.

Data Encryption with Customer-Managed Keys

The security of customer data is Snowflake's first priority. For customers with the highest security requirements, we are adding customer-managed keys.

Encryption Key Management in the Snowflake Data Warehouse

To protect customer data, Snowflake uses strong AES 256-bit encryption key management rooted in AWS CloudHSM. Here's how we deploy it.

Automatic Query Optimization. No Tuning!

Find out how the Snowflake Elastic Data Warehouse does automatic query performance optimization with no manual tuning required.

Welcome to the New Snowflake Status Page

Organized by cloud region and service, the Snowflake Status Page provides information about service events that occurred on or after January 1, 2019.

Data Encryption with Customer-Managed Keys for Azure

Subscribe to our blog newsletter

Get the best, coolest and latest delivered to your inbox each week

Where Data Does More

  • 30-day free trial
  • No credit card required
  • Cancel anytime 
start for free
watch a demo