In an era where autonomous agents are increasingly used to query complex data environments, Starburst is taking proactive measures to enhance data governance and security. Paras Malhotra, the Chief Information Security Officer at Starburst, recently shared insights on the company's approach to federated query environments, emphasizing the need for stable data governance frameworks as AI technologies advance.
Federated Query Environments and Security Challenges
As organizations adopt federated query engines, maintaining data security across diverse sources becomes critical. Starburst's querying engine operates on various data sources, including S3, Snowflake, and Delta Lake, each with distinct access controls. This variety can lead to vulnerabilities if permissions are not meticulously managed. Malhotra noted that a user might be blocked at the Starburst layer but could still access data through a less secure source system.
To address this, Starburst employs a dual-layered approach to access control. The built-in access controls act as an additional layer above the native permissions of each source system. Consequently, every query evaluated by the system undergoes a comprehensive policy assessment before reaching the source. This method ensures that even if a query is allowed at the Starburst level, it can still be denied at the source level if needed, effectively preventing unauthorized access.
AI Agents as Scoped Service Accounts
Malhotra's discussion also highlighted the treatment of AI agents within the federated query framework. These agents convert natural language into SQL queries through the AIDA platform and are treated as scoped service accounts with short-lived credentials. This strategy aims to reduce risks associated with AI agents potentially executing improper queries. By assigning accountable owners for each agent, Starburst improves security and traceability within its query processes.
Malhotra stressed the importance of managing vendor risk, especially since Starburst collaborates with over 200 partners and connectors. The company categorizes these vendors based on their risk levels and data processing capabilities. High-risk vendors undergo thorough reviews, including SOC 2 Type II assessments and penetration testing, while lower-risk vendors face lighter evaluations. This tiered approach ensures effective resource allocation while maintaining oversight of all connections.
Addressing the Complexity of Connector Security
Connectors introduce another layer of complexity to security. Unlike traditional SaaS vendors, connectors execute code that interacts directly with customer data across various source systems. Starburst's security reviews concentrate on scanning this connector code for vulnerabilities, ensuring secure credential handling, and configuring connectors to enforce appropriate access controls. Additionally, all data in transit is encrypted, further protecting sensitive information.
Building a Forensic Audit Trail
A pressing issue in AI security is the ambiguity surrounding accountability when an autonomous agent executes a query that leads to a breach or error. Malhotra recognized this challenge, noting that the industry has yet to fully resolve the question of attribution—whether the fault lies with the agent, the model vendor, or the prompt author.
Starburst's strategy involves creating a multi-layered audit trail that records actions across different levels of the system. This detailed logging aims to provide forensic insights, even when attribution may be unclear. By maintaining comprehensive records, the company seeks to strengthen its security posture and enhance its ability to respond to incidents involving AI agents.
Implications for the Future of AI Security
As federated query environments gain traction, the need for stable data governance and security frameworks will only grow. Starburst's approach demonstrates how organizations can adapt to the complexities of AI and autonomous agents while ensuring data security and compliance. As the landscape evolves, companies that prioritize a layered approach to governance and security are likely to lead the way in creating a secure AI-driven future.
Quick answers
What is the significance of treating AI agents as scoped service accounts?
This treatment enhances security by assigning short-lived credentials and accountable owners, thus reducing risks associated with unauthorized queries.
How does Starburst manage vendor risk?
Starburst tiers vendors based on risk, with high-risk partners undergoing thorough reviews, while lower-risk vendors are subject to lighter assessments.
What challenges does Starburst face in federated query environments?
The main challenge is reconciling different access models from diverse data sources to prevent security gaps in permissions.
How does Starburst ensure security in its connectors?
Starburst conducts security reviews focused on scanning connector code, ensuring secure credential handling, and encrypting data in transit.
The stories that move AI & crypto markets — before the market reacts.
Free. 7am ET. Five stories. 62,400 readers.
