In Snowflake's encryption architecture, the account master key corresponds to one customer account.

Master the SnowPro Advanced Architect Test with flashcards, multiple-choice questions, and detailed explanations. Prepare thoroughly for your certification!

Multiple Choice

In Snowflake's encryption architecture, the account master key corresponds to one customer account.

Explanation:
Snowflake uses envelope encryption: data is encrypted with data keys, and those data keys are themselves encrypted with a higher-level account master key. That account master key is created for and scoped to a single customer account, providing isolation between different customers. Because it serves as the root key for all encryption within that account, it cannot be tied to a database, a user, or a single file. Rotating or re-wrapping happens at the account level, affecting all data in that account while keeping other accounts separate. This is why the account master key corresponds to one customer account.

Snowflake uses envelope encryption: data is encrypted with data keys, and those data keys are themselves encrypted with a higher-level account master key. That account master key is created for and scoped to a single customer account, providing isolation between different customers. Because it serves as the root key for all encryption within that account, it cannot be tied to a database, a user, or a single file. Rotating or re-wrapping happens at the account level, affecting all data in that account while keeping other accounts separate. This is why the account master key corresponds to one customer account.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy