Network Security Flashcards

1
Q

What are two additions to the out of the box security Snowflake provides

A

Layering on built in network policies - specify what IP addresses can connect
Integrating CSP (Cloud service provider) capabilities that may add more security to network connectivity (AWS Private Link)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

All Snowflake network connectivity architectures include what five basic connections

A
  1. Snowflake account URL
  2. one or more OCSP
  3. Snowflake Internal Stage
  4. cloud storage
  5. The connection between the users’ browsers and the Snowflake Apps layer,
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the two types of data flowing on the network paths

A

Customer’s Data
Online Certificate Status Protocol (OCSP) which is used to validate certificates used to establish TLS 1.2 tunnels for network communications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

T/F Only the OCSP traffic uses an unencrypted channel over port 80.

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

T/F Connectivity to the Snowflake internal stage is optional

A

False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

T/F Connectivity to an external stage is optional

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Integration with CSP Private networking are only available with

A

AWS Private Link and Azure Private Link

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What encryption is used on all data communication out of the box

A

TLS 1.2

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

T/F Any design where a Network Policy is being used for every user is likely on the wrong path

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

When should CSP be really considered

A

When large amounts of data or extremely sensitive data is flowing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which edition should you consider if you have HIPAA concerns

A

Business Critical Edition

How well did you know this?
1
Not at all
2
3
4
5
Perfectly