Intro to Databricks Lakehouse Platform Architecture and Security

00:00

databricks Lakehouse platform

00:02

architecture and security fundamentals

00:04

data reliability and performance

00:07

in this video you'll learn about the

00:09

importance of data reliability and

00:10

performance on platform architecture

00:12

Define delta Lake and describe how

00:15

Photon improves the performance of The

00:17

databricks Lakehouse platform

00:19

first we'll address why data reliability

00:21

and performance is important

00:24

it is common knowledge that bad data in

00:26

equals bad data out so the data used to

00:29

build business insights and draw

00:31

actionable conclusions needs to be

00:33

reliable and clean

00:35

while data Lakes are a great solution

00:37

for holding large quantities of raw data

00:39

they lack important features for data

00:41

reliability and quality often leading

00:44

them to be called Data swamps also data

00:46

Lakes don't often offer as good of

00:48

performance as that of data warehouses

00:53

some of the problems data Engineers May

00:55

encounter when using a standard data

00:57

Lake include a lack of acid transaction

00:59

support making it impossible to mix

01:02

updates of pins and reads

01:04

a lack of schema enforcement creating

01:07

inconsistent and low quality data and a

01:09

lack of integration with the data

01:11

catalog resulting in dark data and no

01:13

single source of Truth these can bring

01:15

the reliability of the available data in

01:18

a data Lake into question as for

01:20

performance using object storage means

01:22

data is mostly kept in immutable files

01:24

leading to issues such as ineffective

01:26

partitioning and having too many small

01:28

files

01:29

partitioning is sometimes used as a poor

01:31

man's indexing practice by data

01:33

Engineers leading to hundreds of Dev

01:35

hours lost tuning file sizes to improve

01:37

performance in the end partitioning

01:40

tends to be ineffective if the wrong

01:42

field was selected for partitioning or

01:44

due to high cardinality columns and

01:47

because data Lake slack transactions

01:48

support appending new data takes the

01:50

shape of Simply adding new files the

01:53

small file problem however is a known

01:55

root cause of query performance

01:57

degradation

01:59

the databricks lake house platform

02:00

solves these issues with two

02:02

foundational Technologies Delta Lake and

02:04

photon

02:06

Delta lake is a file-based open source

02:09

storage format it provides guarantees

02:11

for acid transactions meaning no partial

02:13

or corrupted files

02:15

scalable data and metadata handling

02:17

leveraging spark to scale out all the

02:19

metadata processing handling metadata

02:22

for petabyte scale tables

02:24

audit history and time travel by

02:26

providing a transaction log with details

02:28

about every change to data providing a

02:31

full audit Trail including the ability

02:33

to revert to earlier versions for

02:34

rollbacks or to reproduce experiments

02:38

schema enforcement and schema Evolution

02:40

preventing the insertion of data with

02:42

the wrong schema while also allowing

02:44

table schema to be explicitly and safely

02:47

changed to accommodate ever-changing

02:49

data

02:50

support for deletes updates and merges

02:52

which is rare for a distributed

02:54

processing framework to support this

02:57

allows Delta Lake to accommodate complex

02:59

use cases such as change data capture

03:01

slowly changing Dimension operations and

03:04

streaming upserts to name a few

03:07

and lastly a unified streaming and batch

03:09

data processing allowing data teams to

03:12

work across a wide variety of data

03:14

latencies

03:15

from streaming data ingestion to batch

03:18

history backfill to interactive queries

03:20

they all work from the start

03:23

Delta Lake runs on top of existing data

03:26

lakes and is compatible with Apache

03:28

spark and other processing engines

03:30

Delta Lake uses Delta tables which are

03:33

based on Apache parquet a common format

03:35

for structuring data currently used by

03:37

many organizations

03:39

this similarity makes switching from

03:41

existing parquet tables to Delta tables

03:43

quick and easy Delta tables are also

03:45

usable with semi-structured and

03:47

unstructured data providing versioning

03:49

reliability metadata management and time

03:51

travel capabilities making these types

03:53

of data more manageable the key to all

03:56

these features and functions is the

03:57

Delta Lake transaction log this ordered

04:00

record of every transaction makes it

04:02

possible to accomplish a multi-user work

04:04

environment because every transaction is

04:06

accounted for the transaction log acts

04:10

as a single source of Truth so that the

04:12

databricks Lakehouse platform always

04:13

presents users with correct views of the

04:15

data when a user reads a Delta lake

04:18

table for the first time or runs a new

04:20

query on an Open Table spark checks the

04:23

transaction log for new transactions

04:25

that have been posted to the table

04:27

if a change exists spark updates the

04:29

table this ensures users are working

04:31

with the most up-to-date information and

04:33

the user table is synchronized with the

04:35

master record it also prevents the user

04:37

from making divergent or conflicting

04:39

changes to the table and finally Delta

04:41

lake is an open source project meaning

04:43

it provides flexibility to your data

04:45

management infrastructure

04:48

you aren't limited to storing data in a

04:50

single cloud provider and you can truly

04:52

engage in a multi-cloud system

04:55

additionally databricks has a robust

04:58

partner solution ecosystem allowing you

05:00

to work with the right tools for your

05:02

use case

05:05

next let's explore Photon the

05:07

architecture of the lake house Paradigm

05:09

can pose challenges with the underlying

05:12

query execution engine for accessing and

05:14

processing structured and unstructured

05:16

data

05:17

to support the lake house Paradigm the

05:19

execution engine has to provide the same

05:22

performance as a data warehouse while

05:24

still having the scalability of a data

05:26

Lake and the solution in the databricks

05:28

lighthouse platform architecture for

05:30

these challenges is photon

05:32

photon is the next Generation query

05:34

engine it provides dramatic

05:37

infrastructure cost savings where

05:38

typical customers are seeing up to an 80

05:41

total cost of ownership savings over the

05:44

traditional databricks runtime Spark

05:47

photon is compatible with spark apis

05:49

implementing a more General execution

05:51

framework for efficient processing of

05:53

data with support of the spark apis

05:57

so with Photon you see increased speed

05:58

for use cases such as data ingestion ETL

06:01

streaming data science and interactive

06:04

queries directly on your data Lake

06:07

as databricks has evolved over the years

06:09

query performance has steadily increased

06:11

powered by spark and thousands of

06:14

optimization packages as part of the

06:15

databricks runtime Photon offers two

06:18

times the speed per the tpcds one

06:21

terabyte Benchmark compared to the

06:23

latest dbr versions

06:27

some customers have reported observing

06:29

significant speed UPS using Photon on

06:31

workloads such as SQL based jobs

06:33

Internet of Things use cases data

06:36

privacy and compliance and loading data

06:39

into Delta and parquet

06:43

photon is compatible with the Apache

06:45

spark data frame and SQL apis to allow

06:48

workloads to run without having to make

06:50

any code changes

06:52

Photon coordinates work on resources

06:54

transparently accelerating portions of

06:56

SQL and Spark queries without tuning or

06:59

user intervention

07:01

while Photon started out focusing on SQL

07:04

use cases it has evolved in scope to

07:06

accelerate all data and Analytics

07:08

workloads

07:09

photon is the first purpose-built lake

07:11

house engine that can be found as a key

07:14

feature for data performance and The

07:16

databricks Lakehouse platform

07:18

unified governance and security

07:21

in this video you'll learn about the

07:23

importance of having a unified

07:24

governance and security structure the

07:27

available security features Unity

07:29

catalog and Delta sharing and the

07:31

control and data planes of the

07:33

databricks Lakehouse platform

07:36

while it's important to make high

07:38

quality data available to data teams the

07:41

more individual access points added to a

07:43

system such as users groups or external

07:45

connectors

07:47

higher the risk of data breaches along

07:49

any of those lines the and any breach

07:52

has long lasting negative impacts on a

07:54

business and their brand

07:56

there are several challenges to data and

07:58

AI governance

08:00

such as the diversity of data and AI

08:01

assets as data takes many forms Beyond

08:04

files and tables to complex structures

08:06

such as dashboards machine learning

08:08

models videos or images

08:11

the use of two disparate and

08:13

incompatible data platforms where past

08:15

needs have forced businesses to use data

08:18

warehouses for bi and data Lakes for AI

08:20

resulting in data duplication and

08:22

unsynchronized governance models

08:25

the rise of multi-cloud adoption where

08:27

each cloud has a unique governance model

08:29

that requires individual familiarity and

08:32

fragmented tool usage for data

08:34

governance on the lake house introducing

08:36

complexity in multiple integration

08:38

points in the system leading to poor

08:40

performance

08:42

to address these challenges databricks

08:43

offers the following Solutions Unity

08:45

catalog as a unified governance solution

08:48

for all data assets Delta sharing as an

08:51

open solution to securely share live

08:53

data to any Computing platform and a

08:56

divided architecture into two planes

08:58

control and data to simplify permissions

09:01

avoid data duplication and reduce risk

09:05

we'll start by exploring Unity catalog

09:07

Unity catalog is a unified governance

09:09

solution for all data assets

09:12

modern lake house Systems Support

09:14

fine-grained row column and view level

09:16

Access Control via SQL query auditing

09:19

attribute-based Access Control Data

09:21

versioning and data quality constraints

09:23

and monitoring database admins should be

09:26

familiar with the standard interfaces

09:27

allowing existing Personnel to manage

09:30

all the data in an organization in a

09:32

uniform way

09:34

in The databricks Lakehouse platform

09:36

Unity catalog provides a common

09:38

governance model based on ANSI SQL to

09:42

Define and enforce fine-grained access

09:44

control on all data and AI assets on any

09:46

Cloud Unity catalog supplies one

09:49

consistent model to discover access and

09:51

share data enabling better native

09:53

Performance Management and security

09:55

across clouds

09:58

because Unity catalog provides

10:00

centralized governance for data and AI

10:02

there is a single source of Truth for

10:04

all user identities and data Assets in

10:06

The databricks Lakehouse platform

10:09

the common metadata layer for cross

10:11

workspace metadata is at the account

10:13

level it provides a single access point

10:16

with a common interface for

10:17

collaboration from any workspace in the

10:19

platform removing data team silos Unity

10:22

catalog allows you to restrict access to

10:25

certain rows and columns to users or

10:27

groups authorized to query them and with

10:29

attribute-based Access Control you can

10:31

further simplify governance at scale by

10:33

controlling access to multiple data

10:35

items at one time for example personally

10:38

identifiable information in multiple

10:40

given columns can be tagged as such and

10:42

a single rule can restrict or provide

10:44

access as needed Regulatory Compliance

10:47

is putting pressure on businesses for

10:49

full compliance and data access audits

10:51

are critical to ensure these regulations

10:53

are being met

10:54

for this Unity catalog provides a highly

10:57

detailed audit Trail logging who has

10:59

performed what action against the data

11:03

to break down data silos and democratize

11:06

data across your organization for

11:07

data-driven decisions Unity catalog has

11:10

a user interface for data search and

11:12

discovery allowing teams to quickly

11:14

search for Relevant data assets for any

11:17

use case

11:18

also the low latency metadata serving

11:21

and auto tuning of tables enables Unity

11:23

catalog to provide 38 times faster

11:25

metadata processing compared to hive

11:28

metastore

11:29

all the Transformations and refinements

11:32

of data from source to insights is

11:34

encompassed in data lineage all of the

11:36

interactions with the data including

11:38

where it came from what other data sets

11:40

it might have been combined with who

11:42

created it and when what Transformations

11:44

were performed and other events and

11:46

attributes are included in a data sets

11:48

data lineage Unity catalog provides

11:51

automated data lineage charts down to

11:53

table and column level giving that

11:55

end-to-end view of the data not limited

11:58

to just one workload multiple data teams

12:00

can quickly investigate errors in their

12:02

data pipelines or end applications

12:04

impact analysis can also be performed to

12:07

identify dependencies of data changes on

12:09

Downstream systems or teams and then

12:11

notified of potential impacts to their

12:13

work and with this power of data lineage

12:16

there is an increased understanding of

12:18

the data reducing tribal knowledge and

12:21

to round it out Unity catalog integrates

12:23

with existing tools to help you future

12:25

proof your data and AI governance

12:27

next we'll discuss data sharing with

12:30

Delta sharing

12:31

data sharing is an important aspect of

12:34

the digital economy that has developed

12:36

with the Advent of big data but data

12:38

sharing is difficult to manage existing

12:41

data sharing Technologies come with

12:42

several limitations

12:44

traditional data sharing Technologies do

12:46

not scale well and often serve files

12:49

offloaded to a server

12:51

Cloud object stores operate on an object

12:53

level and are Cloud specific and

12:56

Commercial data sharing offerings and

12:58

vendor products often share tables

13:00

instead of files scaling is expensive

13:02

and they aren't open therefore don't

13:04

permit data sharing to a different

13:06

platform

13:08

to address these challenges and

13:10

limitations databricks developed Delta

13:12

sharing with contributions from the OSS

13:14

community and donated it to the Linux

13:16

Foundation it is an open source solution

13:19

to share live data from your Lighthouse

13:21

to any Computing platform securely

13:24

recipients don't have to be on the same

13:27

cloud or even use the databricks lake

13:30

house platform

13:31

and the data isn't simply replicated or

13:34

moved additionally data providers still

13:37

maintain management and governance of

13:39

the data with the ability to track and

13:41

audit usage

13:43

some key benefits of Delta sharing

13:45

include that it is an open

13:47

cross-platform sharing tool easily

13:49

allowing you to share existing data in

13:51

Delta Lake and Apache parquet formats

13:53

without having to establish new

13:55

ingestion processes to consume data

13:57

since it provides native integration

13:59

with power bi Tableau spark pandas and

14:03

Java

14:05

data is shared live without copying it

14:07

with data being maintained on the

14:10

provider's data Lake

14:11

ensuring the data sets are reliable in

14:13

real time and provide the most current

14:15

information to the data recipient

14:18

as mentioned earlier Delta sharing

14:21

provides centralized Administration and

14:23

governance to the data provider as the

14:25

data is governed tracked and audited

14:28

from a single location allowing usage to

14:30

be monitored at the table partition and

14:32

version level

14:34

with Delta sharing you can build and

14:36

package data products through a central

14:38

Marketplace for distribution to anywhere

14:42

and it is safe and secure with privacy

14:44

safe data clean rooms meaning

14:46

collaboration between data providers and

14:48

recipients is hosted in a secure

14:49

environment while safeguarding data

14:52

privacy

14:54

Unity catalog natively supports Delta

14:57

sharing making these two tools smart

14:59

choices in your data and AI governance

15:01

and security structure

15:03

Delta sharing is a simple rest protocol

15:05

that securely shares access to part of a

15:08

cloud data set leveraging modern cloud

15:10

storage systems it can reliably transfer

15:13

large data sets

15:16

finally let's talk about the security

15:17

structure of the data lake house

15:19

platform a simple and unified approach

15:22

to data security for the lake house is a

15:24

critical requirement and the databricks

15:26

lighthouse platform provides this by

15:28

splitting the architecture into two

15:29

separate planes the control plane and

15:31

the data plane

15:33

the control plane consists of the

15:35

managed back-end services that

15:36

databricks provides these live in

15:38

databrick's own cloud account and are

15:40

aligned with whatever cloud service the

15:42

customer is using that is AWS Azure or

15:45

gcp

15:46

here databricks runs the workspace

15:48

application and manages notebooks

15:50

configuration and clusters

15:52

the data plane is where your data is

15:54

processed unless you choose to use

15:56

serverless compute the compute resources

15:58

in the data plane run inside the

16:00

business owner's own cloud account

16:03

all the data stays where it is

16:06

while some data such as notebooks

16:07

configurations logs and user information

16:09

are available in the control plane the

16:12

information is encrypted at rest

16:14

and communication to and from the

16:16

control plan is encrypted in transit

16:18

security of the data plane within your

16:20

chosen cloud service provider is very

16:21

important so the databricks Lakehouse

16:23

platform has several security key points

16:25

for the networking of the environment if

16:28

the business decides to host the data

16:30

plane databix will configure the

16:31

networking by default the serverless

16:34

data plane networking infrastructure is

16:35

managed by databricks in a databricks

16:37

cloud service provider account and

16:39

shared among customers with additional

16:41

Network boundaries between workspaces

16:43

and clusters

16:45

for servers in the data plane databricks

16:48

clusters are run using the latest

16:50

hardened system images

16:51

older less secure images or code cannot

16:54

be chosen databricks code itself is peer

16:57

reviewed by security trained developers

16:58

and extensively reviewed with security

17:00

in mind

17:01

databricks clusters are typically

17:03

short-lived often terminated after a job

17:05

and do not persist data after

17:07

termination code is launched in an

17:09

unprivileged container to maintain

17:10

system stability this security design

17:13

provides protection against persistent

17:15

attackers and privilege escalation

17:19

for databricks support cases databricks

17:21

access to the environment is limited to

17:23

cloud service provider apis for

17:26

Automation and support access databricks

17:28

has a custom-built system allowing our

17:31

staff access to fix issues or handle

17:32

support requests and it requires either

17:35

a support ticket or an engineering

17:37

ticket tied expressly to your workspace

17:39

access is limited to a specific group of

17:42

employees for limited periods of time

17:44

and with security audit logs the initial

17:47

access event and the support team

17:48

members actions are tracked

17:52

for user identity and access databrick

17:54

supports many ways to enable users to

17:57

access their data

17:59

the table ACLS feature uses traditional

18:02

SQL based statements to manage access to

18:04

data and enable fine-grained view-based

18:06

access IM instance profiles enable AWS

18:10

clusters to assume an IM role so users

18:13

of that cluster automatically access

18:15

allowed resources without explicit

18:17

credentials

18:18

external storage can be mounted and

18:20

accessed using a securely stored access

18:22

key and the secrets API separates

18:24

credentials from code when accessing

18:27

external resources

18:29

as mentioned previously databricks

18:31

provides encryption isolation and

18:32

auditing throughout the governance and

18:34

security structure users can also be

18:36

isolated at different levels such as the

18:39

workspace level where each team or

18:40

Department uses a different workspace

18:42

the cluster level where cluster ACLS can

18:45

restrict users who attach notebooks to a

18:47

given cluster

18:48

for high concurrency clusters process

18:50

isolation JV and white listing and

18:53

language limitations can be used for

18:55

safe coexistence of users with different

18:57

access levels and single user clusters

19:00

if permitted allow users to create a

19:03

private dedicated cluster

19:05

and finally for compliance databrick

19:07

supports these compliance standards on

19:09

our multi-tenant platform

19:11

SOC 2 type 2

19:13

ISO 27001 ISO

19:17

27017 and isos 27018 certain clouds also

19:22

support databricks development options

19:24

for fedramp high

19:26

Trust

19:27

HIPAA

19:28

and PCI and databricks in the databricks

19:31

platform are also gdpr and CCPA ready

19:35

instant compute and serverless

19:39

in this video you'll learn about the

19:41

available compute resources for The

19:42

dataworks Lakehouse platform

19:44

what serverless compute is

19:46

and the benefits of databricks

19:48

serverless SQL

19:50

The dataworks Lakehouse platform

19:52

architecture is split into the control

19:53

plane and the data plane the data plane

19:56

is where data is processed by clusters

19:58

of compute resources this architecture

20:00

is known as the classic data plane

20:03

with the classic data plane compute

20:04

resources are run in the business's

20:06

cloud storage account and clusters

20:09

perform distributed data analysis using

20:11

queries in the databrick SQL workspace

20:13

or notebooks in the data science and

20:15

engineering or databricks machine

20:16

learning environments

20:18

however in using this structure

20:21

businesses encountered challenges

20:23

first creating clusters is a complicated

20:25

task choosing the correct size instance

20:28

type and configuration for the cluster

20:30

can be overwhelming to the user

20:31

provisioning the cluster

20:33

next it takes several minutes for the

20:35

environment to start after making the

20:37

multitude of choices to configure and

20:38

provision the cluster

20:40

and finally because these clusters are

20:42

hosted within the businesses cloud

20:43

account there are many additional

20:45

considerations to make about managing

20:47

the capacity and pool of resources

20:49

available and this leads to users

20:51

exhibiting some costly behaviors such as

20:54

leaving clusters running for longer than

20:56

necessary to avoid the startup times and

20:58

over provisioning their resources to

21:00

ensure the cluster can handle spikes and

21:02

data processing needs leading to users

21:04

paying for unneeded resources and having

21:07

large amounts of admin overhead ending

21:09

up with unproductive users

21:12

to solve these problems for the business

21:14

databricks has released the serverless

21:16

compute option or serverless data plane

21:19

as of the release of this content

21:21

serverless compute is only available for

21:23

use with databrick SQL and is referred

21:25

to at times as databrick serverless SQL

21:29

serverless compute is a fully managed

21:31

service that databricks provisions and

21:32

manages the compute resources for a

21:34

business in the databricks cloud account

21:36

instead of the businesses the

21:39

environment starts immediately scales up

21:41

and down within seconds is completely

21:43

managed by data bricks

21:45

you have clusters available on demand

21:47

and when finished the resources are

21:50

released back to data breaks because of

21:52

this the total cost of ownership

21:53

decreases on average between 20 to 40

21:56

percent admin overhead is eliminated and

21:59

users see an increase in their

22:00

productivity

22:02

at the heart of the serverless compute

22:04

is a fleet of database clusters that are

22:06

always running unassigned to any

22:08

customer waiting in a warm State ready

22:11

to be assigned within seconds

22:13

the pool of resources managed by

22:15

databricks so the business doesn't need

22:16

to worry about the offerings from the

22:18

cloud service and databricks works with

22:20

the cloud vendors to keep things patched

22:22

and upgraded as needed

22:24

when allocated to the business the

22:27

serverless compute resource is elastic

22:29

being able to scale up or down as needed

22:32

and has three layers of isolation the

22:34

container hosting the runtime the

22:36

virtual machine hosting the container

22:38

and the virtual Network for the

22:39

workspace

22:41

and each part is isolated with no

22:43

sharing or cross-network traffic allowed

22:45

ensuring your work is secure

22:47

when finished the VM is terminated and

22:50

not reused but entirely deleted and a

22:53

new unallocated VM is released back into

22:56

the pool of waiting resources

22:58

introduction to Lake House data

23:00

management terminology

23:02

in this video you'll learn about the

23:04

definitions for common lake house terms

23:06

such as metastore catalog schema table

23:09

View and function and how they are used

23:12

to describe data management in the

23:13

databricks lake house platform

23:16

Delta Lake a key architectural component

23:19

of the databricks lake house platform

23:21

provides a data storage format built for

23:23

the lake house and unity catalog the

23:26

data governance solution for the

23:27

databricks lighthouse platform allows

23:30

administrators to manage and control

23:31

access to data

23:34

Unity catalog provides a common

23:36

governance model to Define and enforce

23:39

fine-grained access control on all data

23:42

and AI assets on any Cloud Unity catalog

23:45

supplies one consistent place for

23:46

governing all workspaces to discover

23:48

access and share data enabling better

23:51

native Performance Management and

23:53

security across clouds

23:55

let's look at some of the key elements

23:57

of unity catalog that are important to

23:59

understanding how data management works

24:01

in databricks

24:03

the metastore is the top level logical

24:05

container in unity catalog it's a

24:07

construct that represents the metadata

24:09

metadata is the information about the

24:12

data objects being managed by the

24:14

metastore and the ACLS governing those

24:16

lists

24:17

compared to the hive metastore which is

24:20

a local metastore linked to each

24:21

databricks workspace Unity catalog

24:24

metastors offer improved security and

24:26

auditing capabilities as well as other

24:28

useful features

24:30

the next thing in the data object

24:32

hierarchy is the catalog a catalog is

24:34

the topmost container for data objects

24:37

in unity catalog

24:38

a metastore can have as many catalogs as

24:40

desired although only those with

24:42

appropriate permissions can create them

24:45

because catalogs constitute the topmost

24:47

element in the addressable data

24:49

hierarchy the catalog forms the first

24:51

part of the three-level namespace that

24:54

data analysts use to reference data

24:56

objects in unity catalog

24:58

this image illustrates how a three-level

25:02

namespace compares to a traditional

25:03

two-level namespace analysts familiar

25:06

with the traditional data breaks or SQL

25:08

for that matter should recognize the

25:10

traditional two-level namespace used to

25:12

address tables Within schemas

25:15

Unity catalog introduces a third level

25:17

to provide improved data segregation

25:19

capabilities complete SQL references in

25:22

unity catalog use three levels

25:26

a schema is part of traditional SQL and

25:29

is unchanged by unity catalog it

25:32

functions as a container for data assets

25:34

like tables and Views and is the second

25:36

part of the three level namespace

25:38

referenced earlier

25:39

catalogs can contain as many schemes as

25:42

desired which in turn can contain as

25:44

many data objects as desired

25:47

at the bottom layer of the hierarchy are

25:49

tables views and functions starting with

25:51

tables these are SQL relations

25:53

consisting of an ordered list of columns

25:56

though databricks doesn't change the

25:58

overall concept of a table tables do

26:01

have two key variations it's important

26:03

to recognize that tables refined by two

26:05

distinct elements first the metadata or

26:09

the information about the table such as

26:10

comments tags and the list of columns

26:13

and Associated data types and then the

26:15

data that populates the rows of the

26:17

table the data originates from formatted

26:20

data files stored in the businesses

26:21

Cloud object storage

26:25

there are two types of tables in this

26:27

structure managed and external tables

26:29

both tables have metadata managed by the

26:32

metastore in the control plane the

26:34

difference lies in where the table data

26:37

is stored with a manage table data files

26:40

are stored in the meta stores manage

26:42

storage location whereas within an

26:44

external table data files are stored in

26:46

an external storage location

26:49

from an access control point of view

26:51

managing both types of tables is

26:52

identical

26:54

views are stored queries executed when

26:57

you query The View views perform

26:59

arbitrary SQL Transformations on tables

27:02

and other views and are read only they

27:05

do not have the ability to modify the

27:07

underlying data

27:08

the final element in the data object

27:11

hierarchy are user-defined functions

27:13

user-defined functions enable you to

27:15

encapsulate custom functionality into a

27:18

function that can be evoked within

27:19

queries

27:21

storage credentials are created by

27:23

admins and are used to authenticate with

27:25

cloud storage containers either external

27:28

storage user supplied storage or the

27:30

managed storage location for the

27:31

metastore

27:33

external locations are used to provide

27:35

Access Control at the file level

27:38

shares and recipients relate to Delta

27:40

sharing an open protocol developed by

27:43

databricks for secure low overhead data

27:45

sharing across organizations it's

27:48

intrinsically built into Unity catalog

27:50

and is used to explicitly declare shares

27:53

read-only logical collections of tables

27:56

these can be shared with one or more

27:58

recipients inside or outside the

28:00

organization

28:01

shares can be used for two main purposes

28:04

to secure share data outside the

28:07

organization in a performant way or to

28:10

provide linkage between metastors and

28:12

different parts of the world

28:14

the metastore is best described as a

28:17

logical construct for organizing your

28:18

data and its Associated metadata rather

28:21

than a physical container itself

28:23

the metastore essentially functions as a

28:25

reference for a collection of metadata

28:27

and a link to the cloud storage

28:28

container

28:30

the metadata information about the data

28:32

objects and the ACLS for those objects

28:34

are stored in the control plane and data

28:37

related to objects maintained by the

28:39

metastore is stored in a cloud storage

28:41

container