Ensure the highest levels of protection for your data, rapidly implement data policies, and apply end-to-end governance.
Ensure the highest levels of protection for your data, rapidly implement data policies, and apply end-to-end governance.
MarkLogic offers advanced enterprise data security controls that are beyond what any other multi-model database or platform offers. That’s why large investment banks, major healthcare organizations, and classified government systems all trust MarkLogic with their most critical data assets.
Security is not a feature that needs to be turned on and configured. When data is loaded, it is immediately secured.
MarkLogic has scalable controls for authentication, ensuring that the system easily integrates into your environment.
MarkLogic has granular access controls to govern what a user can do and see. Each user is associated with any number of roles, and each role is given privileges that determine what they can do. Also, each document has permissions dictating which roles can see and edit it. Security checks verify the necessary credentials before granting the requested action, and security information is stored in a specific security database in MarkLogic.
MarkLogic secures data at the collection level, document level, and even element/property level (like cell-level security in a relational database). This goes beyond what other document databases provide as it’s very hard to engineer on the back-end and maintain performance, but MarkLogic does it.
MarkLogic closely monitors database activity and makes it possible to audit document access and updates, configuration changes, administrative actions, code execution, and changes to access control.
Cutting-edge data encryption protects against unauthorized access of the database by a SysAdmin or Storage Admin. It allows data, configuration, and logs to be encrypted while the files are resting on disk using AES-256 encryption, and it conforms to FIPS 140 criteria.
In addition to RBAC, MarkLogic can also employ other security models such as Attribute-Based Access Control (ABAC), Policy-Based Access Control (PBAC), or Label-Based Access Control (LBAC). These models further restrict access based on attributes (e.g., social security number, IP address, user’s age, or time of day), policies, or simple labels representing “high” or “low” levels of trust.
For organizations who require additional security measures, the MarkLogic Advanced Security add-on includes three additional capabilities:
Along with the digitalization of virtually everything, the importance of data governance is on the rise. Now, you need context around the data that drives decision making. You get that context with metadata, which supplies both traceability and meaning.
The MarkLogic data platform tightly couples data and metadata and includes bitemporal and smart mastering features that help ensure data trust and accountability. Apply data management policies and track provenance and lineage with ease.
Enforce security uniformly at all layers of the stack to manage data lineage, auditing, quality rules, quality monitoring, security, retention, and archiving.