Summary of Security Features

Snowflake provides industry-leading features that ensure the highest levels of security for your account and users, as well as all the data you store in Snowflake.

The following table provides a high-level summary of the features, grouped into the following categories:

Features Snowflake Editions
Network/site access:  
  • Site access controlled through IP whitelisting and blacklisting, managed through network policies.
All
ESD (or higher)
Account/user authentication:  
  • MFA (multi-factor authentication) for increased security for account access by users.
All
  • OAuth for authorized account access without sharing or storing user login credentials.
All
  • Support for user SSO (single sign-on) through federated authentication.
All
Object security:  
  • Controlled access to all objects in the account (users, warehouses, databases, tables, etc.) through a hybrid model of DAC (discretionary access control) and RBAC (role-based access control).
All
Data security:  
All
  • All files stored in stages (for data loading/unloading) automatically encrypted (using either AES 128 standard or 256 strong encryption).
All
Enterprise (or higher)
ESD (or higher)
Security validations:  
  • Soc 1 Type II compliance.
All
  • Soc 2 Type II compliance.
All
  • Support for HIPAA compliance.
ESD (or higher)
  • PCI DSS compliance.
ESD (or higher)