Skip to main content

How are resources isolated?

Each Atlan customer has their own isolated set of nodes within Kubernetes.

  • Deployments isolate all running services, including the metastore and its persistence in Cassandra and Elasticsearch.

  • The underlying Kubernetes control plane and networking layer (coredns) are shared between tenants. To achieve logical isolation, Loft’s virtual clusters are implemented.

  • The compute resources (nodes, nodegroups) and storage are physically isolated between tenants.

  • Only Atlan's cloud team is able to manage the AWS, Azure, and GCP resources across these levels of isolation.

See security.atlan.com for the latest policies and standards, reports and certifications, architecture, diagrams and more.