Skip to content

Universal Data Authorization

Okera dynamically authorizes and audits every query to comply with data security and privacy regulations.

Okera integrates seamlessly into your infrastructure – in the cloud, on premise, and with cloud-native and legacy tools. 

Okera Platform Features

Universal Policy Management

Simplify and standardize powerful fine-grained access control policies. Write once, apply everywhere.

Dynamic Policy Authorization

Enforce sophisticated data security and privacy policies for every data access request at run-time. Filter, hide, mask, and tokenize sensitive data as queried.

Data Usage Intelligence

Accelerate compliance reporting and discover and remediate inappropriate data usage. Know who has access to sensitive data, and how and when they used it.

FGAC

Provision and restrict access to data at the column, row, and cell level with conditional logic in order to comply with data security mandates and privacy regulation.

RBAC and ABAC

Simplify and generalize policies based on common user roles with Role-Based Access Control (RBAC). Define rich policies leveraging metadata, user attributes, and real-time context with Attribute-Based Access Control (ABAC) in order to scale policy enforcement over time.

Distributed Stewardship

Administrators configure the platform and set global data policy. Data registration and policy management can be delegated to the business domain stewards.

Universal Client & Programmatic Access

Okera provides native client libraries, a BI Gateway for JDBC/ODBC connectivity, and a REST API for programmatic enforcement requests

Push-Down Policy Enforcement

For high-performing systems, Okera intercepts the query, rewrites it (masking, tokenization, etc), then pushes the authorized query down to the underlying data source for the fastest possible query performance.

Scale Policy
Enforcement

Isolate direct data access with Okera nScale™ so public cloud compute frameworks only work with authorized data. On-cluster co-location delivers speed and elastic scalability.

Authentication

Authenticate every request in real time, integrated with enterprise authentication and Single Sign-On (SSO) solutions: oAuth, SAML (Okta, Ping), Microsoft Active Directory, and more.

Active Metadata Registry

Keep authorization policies up-to-date with real-time user and data attributes. Integrate with your identity access management system and enterprise data catalog, and/or use Okera’s ML-powered data discovery to automatically detect and tag sensitive data.

Automation and APIs

Leverage Python, Java, and REST APIs for custom integrations and enterprise workflow automation.

Okera Architecture

Okera integrates seamlessly into your data platform to deliver consistent and scalable enforcement of fine-grained access control – in the cloud, on premise, and with cloud-native and legacy tools.


Analytics & Data Science

Okera supports the full range of analytics and machine learning tools in the modern data platform, with fine-grained access control policies defined in one place and then enforced consistently.

OPEN SOURCE COMPUTE

Apache Hive
Hive
Presto
PrestoDB
Apache Spark
Spark
Apache Impala
Impala

CLOUD DATA ANALYTICS

AWS EMR
Amazon EMR
Apache Impala
Amazon Redshift
Azure Synapse
Azure Synapse
Dremio
Google BigQuery logo
Google BigQuery
Starburst
Snowflake Logo
Snowflake

VIRTUALIZATION | QUERY ENGINES

Azure Synapse
Denodo
Denodo
Dremio
Dremio
Starburst
Starburst
Hadoop
Trino

Data Science Tools

AWS Sagemaker
Amazon Sagemaker
Dataiku
Dataiku
Databricks
Databricks
Domino
Domino Data Labs Logo
Domino Data Labs
Jupyter
Jupyterhub
Python
Python

BI & Reporting Tools

Looker
Looker
PowerBI
PowerBI
Tableau
Tableau

Storage

Okera supports Big Data file formats, as well as relational databases and data warehouses, both cloud-based or on-premise.

File Formats

File and Object Storage

AWS S3
Amazon S3
Azure ADLS
Azure Data Lake Storage
Google Cloud Logo
Google Cloud
Hadoop

Relational Databases

AWS Redshift
Amazon Redshift
Azure SQL Server
Snowflake
Google Cloud SQL Logo
Google Cloud SQL
Microsoft SQL Server
MySQL
MySQL
Oracle
PostgreSQL
PostgresSQL
Sybase

External Systems

Okera was designed to fully integrate within your enterprise environment, as well as leverage attributes from external systems – user attributes from the identity management system, curated business metadata from an enterprise data catalog – for policy enforcement. The Okera audit log can also be integrated with SIEM tools for real-time systems monitoring and to create alerts in the case of a data breach.

Enterprise Data Catalogs

Collibra
BigID Logo
BigID
Alation
Microsoft Data Catalog
Microsoft Purview

Identity Management

Okta Logo
Okta
Microsoft Active Directory Logo
Microsoft Active Directory
Kerberos Logo
Kerberos
LDAP
Ping Identity Logo
Ping Identity
Oauth2

SIEM Tools

Data Dog Logo
Datadog
Splunk Logo
Splunk
Sumologic

Have 30 minutes?

See how you can accelerate innovation and satisfy regulatory and security requirements. 

Okera Dynamic Access Platform Screenshot