Skip to content

IBM Watson Knowledge Catalog Key

Service Name: IBM Watson Knowledge Catalog

Service Description: IBM Watson Knowledge Catalog is a data catalog, governance, and quality platform that helps organizations discover, catalog, govern, and analyze their data assets. It enables businesses to organize and manage data across multiple sources, ensuring data quality and compliance with governance policies.

Service Address: https://www.ibm.com/cloud/watson-knowledge-catalog

Validation Type: API Auth

IP Allow list: IP restrictions can be configured at the IBM Cloud account level using network security policies.

Secret Access Scope: Grants programmatic access to IBM Watson Knowledge Catalog APIs, allowing users to manage data assets, catalogs, governance policies, and perform data analysis operations.

Secret Revokement URL: https://cloud.ibm.com/iam/apikeys

Secret Example: WKC-API-KEY-a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6

Suspicious Activity Investigation Instructions:

  • Review IBM Cloud Activity Tracker logs for unusual API calls or access patterns
  • Check for unauthorized catalog or data asset modifications
  • Monitor for unusual data access or extraction operations
  • Verify if there are any policy violations or governance breaches
  • Look for unexpected changes to metadata, categories, or business terms

Mitigation Instructions:

  • Log in to the IBM Cloud console at https://cloud.ibm.com
  • Navigate to Manage > Access (IAM) > API keys
  • Locate the compromised API key in the list
  • Click the "Actions" menu (three dots) and select Delete
  • Create a new API key with appropriate permissions if needed
  • Update any applications or services that were using the old key
  • Review and adjust access policies to enforce the Principle of Least Privilege.
  • Consider implementing additional security controls such as IP restrictions