Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Get certified in Microsoft Fabric—for free! For a limited time, the Microsoft Fabric Community team will be offering free DP-600 exam vouchers. Prepare now

Reply
gopowerbi
Frequent Visitor

Powe BI Security Whitepaper

‎09-29-2016 02:00 AM

Hallo everyone,

 

I have a question regarding the document that Power BI published regarding its security.

In the document is mentioned that Power BI does store the data on "Azure BLOB" and the metadata on "Azure SQL Server".

 

In the "Data Storage and Movement" chapter it is written that the data is either stored "at rest" or "in process".

 

  1.  "in process" is referring to LiveQueries such as Azure SQL Server LiveQonnection.

  2. "at rest" is referred to "imported" data such as Excel files or Data Sources like SAP BW, OData etc.
     

BUT:

  - when we connect to CRM Dynamics Online, does Power BI extract the data, transform it and load it into Azre BLOB, or does it only make a reference to the data source on CRM Dynamics Onine?

 

  - is the below quoted text from the "Power BI Security Whitepaper" file true?

 

"Non-Direct Query queries do not include credentials for the underlying data, and the underlying data is loaded into the Power BI service unless it is on-premises data accessed through a Power BI Gateway, in which case the query only stores references to on-premises data."  ->  That would mean that if a company accesses to its SAP data via "Power BI Gateway on-premise", the MASTER DATA of SAP would NOT be stored in Azure BLOB?

 

Thank you in advance

Message 1 of 10
6,172 Views
0
1 ACCEPTED SOLUTION
Greg_Deckler
Super User
Super User
In response to gopowerbi

‎09-30-2016 02:21 AM

@gopowerbi - Yes, that is my understanding as well (your summary at the end). I think that's why @Seth_C_Bauer and I were so certain that the second highlighted statement had to be incorrect. If it was indeed as stated, then @Seth_C_Bauer and I have spent the last couple years fundamentally not understanding how Power BI works!



Follow on LinkedIn
@ me in replies or I'll lose your thread!!!
Instead of a Kudo, please vote for this idea
Become an expert!: Enterprise DNA
External Tools: MSHGQM
YouTube Channel!: Microsoft Hates Greg
Latest book!: Power BI Cookbook Third Edition (Color)

DAX is easy, CALCULATE makes DAX hard...

View solution in original post

Message 8 of 10
9,349 Views
9 REPLIES 9
Greg_Deckler
Super User
Super User

‎09-29-2016 05:23 AM

For Desktop, I do not see any other way for CRM Online other than that it imports it into its data model. Otherwise, if it just stores a reference, what would be the purpose of a refresh?

 

The other part of the whitepaper you quote is very confusing and doesn't seem correct at all. Again, what would be the purpose of a refresh?



Follow on LinkedIn
@ me in replies or I'll lose your thread!!!
Instead of a Kudo, please vote for this idea
Become an expert!: Enterprise DNA
External Tools: MSHGQM
YouTube Channel!: Microsoft Hates Greg
Latest book!: Power BI Cookbook Third Edition (Color)

DAX is easy, CALCULATE makes DAX hard...
Message 2 of 10
6,151 Views
0
gopowerbi
Frequent Visitor
In response to Greg_Deckler

‎09-29-2016 08:01 AM

The puprose of a refresh is to have your data as updated as you want (schedule daily/weekly/... refresh). Why would you need a refresh if you get the data instantly when you run the query/open a dashboard or refresh? Besides that, there is the possibility to create a LiveConnection between Azure SQL Server ( = cloud) and Power BI. I understood it in this way: by getting your data through a live connection, the data is stored into the cloud but temporary.

 

Regarding to "Power BI Security Whitepapre"  in the first sentence of this link you can download the word document. In the chapter "Data Storage and Movement" is written the text I quoted above, which is about the location of the data you work with.

 

My post is not about whether the data is refreshed or not but about the security of it. I do not have many doubts about power bi cloud security, but there may be some people in a company who are sceptical about all the cloud history and do not want to "publish" sensitive data onto the cloud.

 

 

Message 3 of 10
6,142 Views
0
Seth_C_Bauer
Community Champion
Community Champion
In response to gopowerbi

‎09-29-2016 08:09 AM

@gopowerbi@Greg_Deckler The highlighted portion that is causing confusion is wrong. I reached out to a contact at Microsoft and they will get the change implemented in the white paper soon. Taking that out, the rest of the white paper does a good job explaining all the "States" of data at rest or in transition.


Looking for more Power BI tips, tricks & tools? Check out PowerBI.tips the site I co-own with Mike Carlo. Also, if you are near SE WI? Join our PUG Milwaukee Brew City PUG
Message 4 of 10
6,139 Views
Greg_Deckler
Super User
Super User
In response to Seth_C_Bauer

‎09-29-2016 10:36 AM

Thanks @Seth_C_Bauer, glad I'm not crazy!



Follow on LinkedIn
@ me in replies or I'll lose your thread!!!
Instead of a Kudo, please vote for this idea
Become an expert!: Enterprise DNA
External Tools: MSHGQM
YouTube Channel!: Microsoft Hates Greg
Latest book!: Power BI Cookbook Third Edition (Color)

DAX is easy, CALCULATE makes DAX hard...
Message 5 of 10
6,130 Views
0
Seth_C_Bauer
Community Champion
Community Champion
In response to Greg_Deckler

‎09-29-2016 10:59 AM

@Greg_Deckler I felt the same. "reached out to a Microsoft contact" = Either I missed something unforgivable, or this is an error... I hope this is an error. 🙂


Looking for more Power BI tips, tricks & tools? Check out PowerBI.tips the site I co-own with Mike Carlo. Also, if you are near SE WI? Join our PUG Milwaukee Brew City PUG
Message 6 of 10
6,125 Views
0
gopowerbi
Frequent Visitor
In response to Seth_C_Bauer

‎09-30-2016 12:42 AM

screenshot.PNG

I also had doubt about this but I wanted to ask to get sure this is not true Robot Indifferent .

To sum up:

Power BI is based on Azure -> a company's data will do the ETL (Extract, Transform, Load) procedure (exeption it is a livequery), which means the dataset, reports and dashboards will be saved on Azure BLOB, while the metadata will be saved in an Azure SQL Server. -> everything is on the cloud but it is encrypted (or atleast it should be since Q3 2016). right?

Message 7 of 10
6,103 Views
0
v-qiuyu-msft
Community Support
Community Support
In response to gopowerbi

‎09-30-2016 02:49 AM

Hi @gopowerbi,

 

From the Word document, it said

 

"Metadata about a user’s Power BI subscription, such as dashboards, reports, recent data sources, workspaces, organizational information, tenant information, and other metadata about the system is stored and updated in Azure SQL Database. All information stored in Azure SQL Database is fully encrypted using Azure SQL’s Transparent Data Encryption (TDE) technology. All data that is stored in Azure Blob storage is also encrypted. More information about the process of loading, storing, and moving data is described in the Data Storage and Movement section."

So in my opinion, stored metadata are encrypted in cloud.

 

Best Regards,
Qiuyun Yu

Community Support Team _ Qiuyun Yu
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Message 10 of 10
6,087 Views
Greg_Deckler
Super User
Super User
In response to gopowerbi

‎09-30-2016 02:21 AM

@gopowerbi - Yes, that is my understanding as well (your summary at the end). I think that's why @Seth_C_Bauer and I were so certain that the second highlighted statement had to be incorrect. If it was indeed as stated, then @Seth_C_Bauer and I have spent the last couple years fundamentally not understanding how Power BI works!



Follow on LinkedIn
@ me in replies or I'll lose your thread!!!
Instead of a Kudo, please vote for this idea
Become an expert!: Enterprise DNA
External Tools: MSHGQM
YouTube Channel!: Microsoft Hates Greg
Latest book!: Power BI Cookbook Third Edition (Color)

DAX is easy, CALCULATE makes DAX hard...
Message 8 of 10
9,350 Views
gopowerbi
Frequent Visitor
In response to Greg_Deckler

‎09-30-2016 02:35 AM

Thank you for your effort you are putting in this community. It is not the first time I have opened a thread and you replied solving my problems. Thank you @Greg_Deckler and @Seth_C_Bauer

Message 9 of 10
6,092 Views
0

Helpful resources

Announcements
September Hackathon Carousel

Microsoft Fabric & AI Learning Hackathon

Learn from experts, get hands-on experience, and win awesome prizes.

October NL Carousel

Fabric Community Update - October 2024

Find out what's new and trending in the Fabric Community.

View All