Kogni is a data security product. Kogni discovers sensitive data in enterprise data sources, secures it, and continuously monitors for new sensitive data. Kogni helps organizations comply with regulations such as HIPAA, PCI, GDPR, PHI, FERPA and others.
Kogni can be configured to send the automatically discovered sensitive data catalog to third party cataloging tools, Cloudera Navigator, or Apache Atlas. This information can be used to define fine-grained access control policies using native RBAC providers such as Apache Sentry, Apache Ranger, Blue Talon, etc.
Kogni secure functionality secures the data as it gets ingested into the Data Lake. If the data is already present on the data lake , we rewrite the data on HDFS when securing a column. If data that is already on the data lake needs to be secured, we provide custom workflows that can be used for doing one-time secure of the data on the data lake.
Yes. Kogni integrates with and complements third party cataloging tools, Navigator, and Atlas. When Kogni discovers new sensitive data, it can automatically push the discovery information to third party cataloging tools, Navigator, and Atlas. This information can be used to define fine-grained access control policies using Apache Sentry or Apache Ranger.
Yes. Kogni integrates with third party encryption and tokenization tools.
Yes. The sensitive data catalog is available via API in addition to UI.
Kogni does not access at the network packet layer. Kogni is a Java-based application and needs read access to hadoop/databases. Kogni is modeled in the same manner as most vulnerability management solutions which utilize authenticated scanning. Kogni requires such access in order to properly discover and catalog the data elements.
Yes. Kogni automatically finds sensitive data covered by HIPAA Including images (facial images, fingerprint).
A typical engagement will start with Kogni team doing a data risk assessment. Based on the data risk assessment, Kogni is setup and configured for the customers risk profile. The one-time setup and configuration is included in the license pricing. For new installations, we recommend starting with sampling:
Kogni can be used together with tools such as Nmap to first discover the systems available in the environment. Once such systems are identified and credentials for such systems provided to Kogni, Kogni scan can be initiated to identify sensitive data.
We support multiple licensing models with annual subscription model being the most common. Contact sales for more information.
Traditional data cataloging tools create data catalogs for structured datasets (tables, columns). Kogni automatically catalogs sensitive data in structured datasets, cloud object stores, log files, images, and scanned documents. After discovery, Kogni secures sensitive data by encrypting/masking /tokenizing/redacting, and it monitors and alerts on Sensitive Data Proliferation and suspicious access of sensitive data.