Dussehra released Crater Lake. With this release, Dasera provides security, data and compliance teams with a complete context of data storage, users and usage, empowering them to make the right business decisions to protect their data, saving time and money.
About Crater Lake
Crater Lake is the deepest lake in the United States. Coincidentally, the latest issue of Dasera contains an in-depth analysis of the context. The release includes role-based access controls (RBAC) that provide granular control over permission management and an open API that allows users to programmatically connect the Dasera platform to external databases and platforms to further enrich existing metadata.
Crater Lake facilitates data governance and data security to address one of the major challenges companies face – a lack of data ownership and cross-functional collaboration.
How Crater Lake 5.0 is changing data management and data security
Because data governance is a shared responsibility, it requires collaboration between security, data and compliance teams. Effective data governance cannot be achieved when these stakeholders operate in functional silos.
To help teams have a seamless collaboration experience, the Crater Lake release includes API-based integration, object-level privilege analysis, user identity mapping, and continuous visibility into user activity.
Crater Lake 5.0 Highlights
Prevent insider exposure from overprivileged users
According to Aberdeen Strategy and Research (2021), 78% of insider data breaches are unintentional, and even well-intentioned users can cause harm.
Users with excessive privileges, or those with more access to data than they need to do their jobs, increase the potential for breaches in an organization and allow hackers and rogue insiders to abuse and exploit sensitive information.
Therefore, organizations must adhere to the principle of least privilege, which states that users should only have access to the data they need to do their jobs. Following this principle ensures that administrators know who has access to sensitive data and what policies govern data access permissions.
Dasera has implemented two new features to enable administrators to see the privilege level users currently have and the privilege level they should have for each datastore. These features further demonstrate Dasera’s commitment to proactive data security.
Object-level privilege analysis
Dasera provides administrators with information about which users have access to which types of sensitive data. When correlated with employee metadata, the principle of least privilege helps administrators determine which departments should authorize access to data and under what circumstances access should be revoked.
Display user identification
Dasera can now automatically match database users with active employees according to the company’s corporate policies. This feature provides visibility into ghost database users that do not map to Active Employee or Service accounts.
This helps Data teams gain visibility into overprivileged users and adjust their access to data. They can also match multiple usernames in different databases to the same active employee ID so that their profiles can be aggregated to provide the correct risk position.
Get visibility into every action with user audit reports
Unfortunately, data breaches continue to increase, which means that every company must be prepared to respond to their data breach.
In the event of a breach, audit trails can help reconstruct the historical events associated with the record, including the “who, what, when, and why” of the user actions that led to the incident.
With the latest version of Crater Lake 5.0, Dasera can now capture the time a record was created, modified or deleted by each platform user connected via role-based access control (RBAC), thereby reducing the risk of a data breach.
Forensic data from an audit trail will allow for faster response to and remediation of a data breach.
Enrich metadata with Dasera’s Consolidation API
It’s critical for data, security, and compliance teams to manage their cloud systems at scale and use services that coexist well within their ecosystems.
Dasera launched the Consolidation API as part of the Crater Lake release to meet customers’ application and workflow integration needs.
The Consolidation API includes secure paths for all of Dasera’s classification and tagging capabilities, enabling organizations to share metadata and enrich the context of data regardless of where it resides in their environment.