1 of 62
Definition
- transparently replaces existing account and table keys every 30
days with a new key
- old keys are still kept for data that was encrypted using the old
keys
Give this one a try later!
Future Grants Key Rotation
, Key Pair Authentication Key Pair flow
Don't know?
2 of 62
Definition
- schema-level objects
- don't need be an owner to create/apply a Masking Policy
- can be nested, existing in tables and views that reference those
tables
- can be added to a table/view during or after creation of the
table/view
- ex:) if you try to join columns from two tables that have masking
policies attached to them, they will join based on the masked data
not the actual data --> policy is always applied
Give this one a try later!
Privileges for schema objects Row Access Policies
Key Concepts of Masking
Privileges for Account Objects
Policies
Don't know?
3 of 62
,Definition
- automatically granted to every user and every role in an account
- can own securable objects, however objects owned by this role
are available to every other user and role within an account
Give this one a try later!
Securable object Periodic Re-Keying
Capabilities of the owner role of an
PUBLIC
object
Don't know?
4 of 62
Definition
- views displaying metadata for all objects contained in the database
- ex:) Tables, Stages, Pipes, Functions
- views displaying metadata for account-level objects (non-database
objects like toles, warehouses, and databases)
- ex:) Databases, Load History, Enable Roles, Applicable Roles
- table functions displaying metadata for historical and usage data
across an account (return multiple rows and can be queried like a
table)
- ex;) Task History, Login History, Copy History, Tag References, etc.
, Give this one a try later!
Privileges for Account Objects Discretionary Access Control (DAC)
What does
What is the purpose of Account
INFORMATION_SCHEMA
Usage?
contain?
Don't know?
5 of 62
Definition
- ORGADMIN
- ACCOUNTADMIN
- SECURITYADMIN
- SYSADMIN
- USERADMIN
- PUBLIC
Give this one a try later!
READER_ACCOUNT_USAGE DATA_SHARING_USAGE
Static Data Masking System-Defined Roles
Don't know?
Definition
- transparently replaces existing account and table keys every 30
days with a new key
- old keys are still kept for data that was encrypted using the old
keys
Give this one a try later!
Future Grants Key Rotation
, Key Pair Authentication Key Pair flow
Don't know?
2 of 62
Definition
- schema-level objects
- don't need be an owner to create/apply a Masking Policy
- can be nested, existing in tables and views that reference those
tables
- can be added to a table/view during or after creation of the
table/view
- ex:) if you try to join columns from two tables that have masking
policies attached to them, they will join based on the masked data
not the actual data --> policy is always applied
Give this one a try later!
Privileges for schema objects Row Access Policies
Key Concepts of Masking
Privileges for Account Objects
Policies
Don't know?
3 of 62
,Definition
- automatically granted to every user and every role in an account
- can own securable objects, however objects owned by this role
are available to every other user and role within an account
Give this one a try later!
Securable object Periodic Re-Keying
Capabilities of the owner role of an
PUBLIC
object
Don't know?
4 of 62
Definition
- views displaying metadata for all objects contained in the database
- ex:) Tables, Stages, Pipes, Functions
- views displaying metadata for account-level objects (non-database
objects like toles, warehouses, and databases)
- ex:) Databases, Load History, Enable Roles, Applicable Roles
- table functions displaying metadata for historical and usage data
across an account (return multiple rows and can be queried like a
table)
- ex;) Task History, Login History, Copy History, Tag References, etc.
, Give this one a try later!
Privileges for Account Objects Discretionary Access Control (DAC)
What does
What is the purpose of Account
INFORMATION_SCHEMA
Usage?
contain?
Don't know?
5 of 62
Definition
- ORGADMIN
- ACCOUNTADMIN
- SECURITYADMIN
- SYSADMIN
- USERADMIN
- PUBLIC
Give this one a try later!
READER_ACCOUNT_USAGE DATA_SHARING_USAGE
Static Data Masking System-Defined Roles
Don't know?
