How does Zscaler grant full customer data segregation on its shared platform?


is there more information available how Zscaler ensures data segregation? I have only seen, (security safeguard section).

Thank you in advance.


Hi Andreas,
Within the ZEN (data plane) the network stack operates in User memory space rather than kernel which means for each flow we are able to reserve memory during processing and wipe it after. The ZEN doesn’t actually have any customer identifying information. The policy is pulled from the central authority specific to that customer/user but that identity data isn’t retrieved by the ZEN, only the traffic processing policy. As the metadata for the transaction logs is processed for storage by the Nanolog clusters it is differentially logged, indexed, and tokenized using a different dictionary for each customer.

1 Like

Hi Mike,

thank you for your answer. :grinning:

Best regards