DeltaForge is software you install and operate on your own infrastructure. There is no external control plane to trust. Your data, your keys, your network perimeter: DeltaForge enforces access inside it.
Because DeltaForge runs on infrastructure you control, it inherits the network controls you already have in place. VPC isolation, firewall rules, private endpoints: these apply to DeltaForge the same way they apply to anything else in your environment.
The control plane runs on your VMs or on-premises. No traffic leaves your network to reach a DeltaForge-managed service. You operate the software; you control the perimeter.
Storage credentials and connection secrets are stored in OS Keychain (for desktop) or Azure Key Vault (for production). The catalog stores references only. The GUI never touches credentials directly; all operations go through the control plane HTTP API.
All connections between components (GUI to control plane, ODBC driver to compute node, compute node to object storage) run over TLS. There is no plaintext path.
Standard SQL access control enforced by the engine before any read or write reaches the data.
SELECT, INSERT, UPDATE, DELETE, CREATE, DROP, ALTER, ADMIN. Granted per object at zone, schema, table, view, or column granularity. REVOKE takes effect immediately.
Built-in administrative roles plus custom roles you define. Role hierarchy with inheritance. Multiple roles per identity. Grants cascade downward: a schema grant covers all tables in that schema.
Named identities for automation and pipeline runs. Scoped tokens with explicit tool allow-lists for MCP agent sessions. Token expiry and revocation from the control plane.
The same RBAC engine governs SQL queries, ODBC connections, MCP tool calls, and the desktop GUI. There is no second permission system to keep aligned with the first.
Every authorization decision, every query, every schema change: all recorded with identity, timestamp, and outcome.
Authentication events, ALLOW and DENY decisions, data access (read/write), DDL operations (CREATE, ALTER, DROP), permission changes (GRANT, REVOKE), and configuration changes.
Timestamp with timezone, user identity and session, source IP, action and resource, success or failure status, and the SQL or API call that triggered the entry.
Configurable retention policies. Log export for SIEM integration. MCP tool calls from AI agents land in the same log as human queries so you have a unified record of all access.
Install DeltaForge inside your network. Apply your existing perimeter controls. Govern access with standard SQL GRANT and REVOKE.