Okera unveils no-code policy creation for access control with de-identification
Okera has introduced no-code, fine-grained access control (FGAC) policy creation with de-identification to its secure data access platform. According to the vendor, the elimination of coding creates a highly flexible, easy-to-use access control management environment, allowing any data owner or steward to create custom policies based on a combination of attributes.
In addition, the enterprise-scale de-identification functionality includes dynamic masking and tokenization, while a new user inactivity reporting capability simplifies access reviews for compliance purposes and enables a “least privilege” access control strategy.
According to Okera, the new capabilities are targeted at the needs of large organizations. They have a variety of access control use cases and require flexible, attribute-based access control (ABAC) policies that can combine multiple attributes, including user, tool, type of data, and location, to enable self-service analytics while ensuring secure, compliant, and agile access to data. Organizations also require the ability to add de-identification and privacy functions, such as dynamic masking and tokenization, without coding. Rather than creating multiple copies of data with and without data transformation, organizations want to automate these functions and enforce these policies dynamically.
"Self-service analytics is the holy grail of enabling enterprises to take full advantage of their data for digital transformation initiatives related to the customer experience, end-to-end business processes, and improved business decision making,” said Nick Halsey, Okera CEO. “By eliminating the need for coding, we have put access control management into the hands of the data stewards and governance and privacy professionals who understand the intricacies of regulations and internal data privacy policies. This democratization of secure, compliant access to data is critical to making true self-service analytics a reality."
Extending ABAC to support enterprise-scale de-identification and privacy functions dramatically simplifies the process of provisioning data access. The point-and-click user interface of the enhanced Okera policy builder lets data owners and stewards create and manage fine-grained ABAC policies involving row-level filtering and de-identification and privacy functions without writing code. The policies can also be edited and are enforced dynamically, allowing for agility in ensuring security and governance.
For more information, visit www.okera.com.