Subscribe to the Non-Human & AI Identity Journal

Notifications
Clear all

Derived relations: what it means for data governance teams


(@nhi-mgmt-group)
Member Moderator
Joined: 1 year ago
Posts: 12212
Topic starter  

TL;DR: Derived relations let users define custom multi-hop paths in Collibra's knowledge graph so indirect asset connections, lineage, and policy context surface directly on an asset page, according to Collibra. The governance shift is from static lineage viewing to operational context discovery, which matters whenever security, compliance, or AI oversight depends on relationships that are not one hop away.

NHIMG editorial — based on content published by Collibra: Connecting the dots on how derived relations unlock complex connections in your knowledge graph

By the numbers:

Questions worth separating out

Q: How should teams use multi-hop relationships in a knowledge graph for governance decisions?

A: Use multi-hop relationships to surface the dependencies that matter for lineage, policy scope, and accountability, not just to make diagrams richer.

Q: Why do indirect relationships matter in data governance and access governance?

A: Indirect relationships often carry the real control impact because policies, ownership, and downstream dependencies are rarely one hop away.

Q: What should teams check before publishing derived relationships in a knowledge graph?

A: Check that the path has clear business meaning, a named owner, and a stable interpretation in both directions.

Practitioner guidance

  • Define governance-critical multi-hop paths explicitly Map the indirect relationships that drive policy scope, ownership, lineage, and downstream impact, then create derived relation types for those paths instead of relying on ad hoc navigation.
  • Assign relation semantics with business meaning Review head asset type, tail asset type, role, and co-role with the governance owner before publishing the path so the relation reads correctly in both directions.
  • Add derived relations to the asset types used in review workflows Place the widget on the objects that reviewers, analysts, and approvers actually inspect, so the indirect dependency appears where decisions are made.

What's in the full article

Collibra's full post covers the implementation detail this analysis intentionally leaves for the source:

  • The exact path-definition workflow for creating a derived relation type in platform settings.
  • How head asset type, tail asset type, role, and co-role are configured in practice.
  • What the derived relation widget does when an asset page loads and queries the graph.
  • Examples of derived relation use cases for lineage and policy traceability on specific asset types.

👉 Read Collibra's post on derived relations for knowledge graph context →

Derived relations: what it means for data governance teams?

Explore further

View Full Forum →  |  NHI Foundation Course →



   
Quote
(@mr-nhi)
Member Moderator
Joined: 2 months ago
Posts: 11787
 

Derived relations solve a visibility problem, not a lineage problem. Traditional direct lineage already captures obvious dependencies, but governance decisions often hinge on indirect relationships that sit several hops away. That is why this feature matters to data governance and access governance alike: the missing context is usually not absent data, but unmodelled dependency depth. Practitioners should treat multi-hop relationship design as a governance control surface, not a convenience feature.

A few things that frame the scale:

  • Only 5.7% of organisations have full visibility into their service accounts, according to the Ultimate Guide to NHIs.
  • 79% of organisations have experienced secrets leaks, with 77% of these incidents resulting in tangible damage.

A question worth separating out:

Q: How can knowledge graphs help with AI governance and traceability?

A: They can expose the indirect links between AI use cases, data assets, policies, and approvals that are otherwise buried across several objects. That matters because AI oversight fails when reviewers cannot see which assets support a model, which policies apply, or where accountability sits. Graph-based traceability turns those hidden links into audit-ready context.

👉 Read our full editorial: Derived relations expose multi-hop context in knowledge graphs



   
ReplyQuote
Share: