Edge security information

Edge is designed with the security first principle. That means that:

• Edge sites always use REST API endpoints to establish connections.
• Edge does not store data after the data is processed on the Edge site, not even sample data.
• Edge manages Collibra Data Intelligence Cloud and data source credentials. This has the following consequences:
  • Credentials are not accessible outside of Edge.
  • Credentials used on an Edge site are encrypted with a key that is secured in Collibra Data Intelligence Cloud.
  • Credentials of data sources and Collibra Data Intelligence Cloud can be updated if necessary.
• All configuration parameters, files or strings marked as secret are stored on the Edge site encrypted with a public key that resides in Collibra Data Intelligence Cloud. The private part of that key is encrypted with a public key from the Edge site. As a result, secrets can only be decrypted with both key pairs, one residing on the Edge site and the other on Collibra Data Intelligence Cloud.
• An Edge site communicates in a secure way with your Collibra Data Intelligence Cloud environment using certificates, issued by a Collibra-chosen Certificate Authority (CA). However, you can also use a CA of your choice.