Summary of Security Features

Snowflake provides industry-leading features that ensure the highest levels of security for your account and users, as well as all the data you store in Snowflake.

The following table provides a high-level summary of the features, grouped into the following categories:

Features

Snowflake Editions

Network/site access:

  • Site access controlled through IP whitelisting and blacklisting, managed through network policies.

All

ESD (or higher)

Account/user authentication:

  • MFA (multi-factor authentication) for increased security for account access by users.

All

  • OAuth for authorized account access without sharing or storing user login credentials.

All

  • Support for user SSO (single sign-on) through federated authentication.

All

Object security:

  • Controlled access to all objects in the account (users, warehouses, databases, tables, etc.) through a hybrid model of DAC (discretionary access control) and RBAC (role-based access control).

All

Data security:

All

  • All files stored in stages (for data loading/unloading) automatically encrypted (using either AES 128 standard or 256 strong encryption).

All

Enterprise (or higher)

ESD (or higher)

Security validations:

  • Soc 1 Type II compliance.

All

  • Soc 2 Type II compliance.

All

  • Support for HIPAA compliance.

ESD (or higher)

  • PCI DSS compliance.

ESD (or higher)