This document describes a data-centric, zero-trust security platform that provides end-to-end protection for data across shared data lakes, clouds, and hybrid environments. The platform enables multi-tenant access and governance of data lakes while enforcing data sovereignty and compliance through FIPS 140-2 compliant key management without impacting performance or functionality.