How is data protected in Snowflake throughout its lifecycle? (Choose two.)
How is data protected in Snowflake throughout its lifecycle? (Choose two.)
C. Local and In‑Transit Encryption Snowflake’s client library automatically encrypts files on the user’s local machine before they’re sent to an internal stage. In addition, all data in transit is protected via TLS, ensuring end‑to‑end encryption before the data even reaches Snowflake’s cloud storage. D. Automated Key Rotation with HSMs Snowflake uses a hierarchical key model—root keys, account master keys, table master keys, and file keys—all managed in FIPS‑validated hardware security modules (HSMs). The service automatically rotates these keys on a regular schedule and can periodically re‑encrypt stored data (“rekeying”) without any customer intervention.