A tag is a form of "attribute" within Okera, and the terms may be used interchangeably. They are grouped into namespaces that you can define. A namespace acts as a category for grouping similar tags. For example, tags associated with security might be grouped under a namespace called
Okera is distributed with some commonly used tags under the tag (attribute) namespaces called
phi. It also allows you to create your own tags from scratch or import them from tag templates provided by Okera.
The Tags page allows users with access to view existing tags, create new tags associated with a namespace, import tags, and delete tags.
You can assign tags on objects based on the data they contain. For example, you might want to tag a dataset containing sales data as
sales or a column with sensitive data as
pii (personal identifiable information). This enables the creation of tag-based, or attribute-based access (ABAC), policies based on tags.
To learn more about using tags in tag-based access control policies, see Attribute-Based Access Control (ABAC).
Okera includes an autotagging capability that can help identify common, formatted data, such as phone and credit card numbers, to simplify the effort of classifying new data and writing access policies for them. For more information, see Configure Autotagging.
See also the following sections.