cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Data Engineering
Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

Are notebooks encrypted even if no CMK is provided?

Go to solution
Anonymous
Not applicable

โ€Ž11-11-2021 07:27 AM

This document (https://docs.databricks.com/security/keys/customer-managed-keys-managed-services-aws.html) describes how to use a customer managed key to encrypt notebooks in the control plane.

We would please like to verify: if no CMK is provided, are notebooks still encrypted using a key provided by Databricks or the cloud provider?

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Filippo-DB
Databricks Employee
Databricks Employee

โ€Ž11-12-2021 12:03 PM

Hello @Nathan Buesgensโ€‹ , from a high level point of view, by default, notebooks source code and metadata in the control plane are encrypted at rest in AWS RDS using AWS KMS with a Databricks-managed Key.

But there is other data related to notebooks and things change depending on what kind of data you are referring to and how you use notebooks (interactive vs. jobs).

I would recommend to reach out to your account team and request a copy of the enterprise security guide which provides an in-depth description of Databricks' security posture.

Cheers,

Filippo

The compliance guy

View solution in original post

2 REPLIES 2

Go to solution
Anonymous
Not applicable

โ€Ž11-12-2021 08:47 AM

Hello @Nathan Buesgensโ€‹ - My name is Piper and I'm one of the moderators for Databricks. Thanks for your question and it's great to meet you myself.

Let's give the community a bit longer to respond. If nothing comes our way, we'll circle back to you.

Go to solution
Filippo-DB
Databricks Employee
Databricks Employee

โ€Ž11-12-2021 12:03 PM

Hello @Nathan Buesgensโ€‹ , from a high level point of view, by default, notebooks source code and metadata in the control plane are encrypted at rest in AWS RDS using AWS KMS with a Databricks-managed Key.

But there is other data related to notebooks and things change depending on what kind of data you are referring to and how you use notebooks (interactive vs. jobs).

I would recommend to reach out to your account team and request a copy of the enterprise security guide which provides an in-depth description of Databricks' security posture.

Cheers,

Filippo

The compliance guy

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you wonโ€™t want to miss the chance to attend and share knowledge.

If there isnโ€™t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements