DataSunrise Data Masking for AlloyDB
Data Masking is an essential tool for sensitive data protection in your AlloyDB. Data masking obfuscates data for unauthorized users, so they do not have access to sensitive information. DataSunrise provides both, static and dynamic masking.
Data Masking provides comprehensive protection from data leakage by replacing real characters from selected columns with fake ones. At the same time, the format of real data can be preserved. DataSunrise uses the same algorithms for dynamic and static data masking but features have some differences in the way they are used.
While performing Static Masking, DataSunrise creates a copy of a database and masks selected columns according to the pre-set rules. An important advantage of static masking is that there is no possibility to retrieve real information from statically masked data. But at the same time, you need to update the database copy in accordance with the actual data.

Dynamic Masking does not need to create a copy of a database. The obfuscation is made at the moment of a query. It means that data does not leave the database and you can avoid the usage of extra space for the duplicate database. AlloyDB dynamic masking intercepts the query and changes it according to pre-set masking rules, thus the requester will receive masked data.
Masking rules can be easily adjusted for your needs. You can mask contents of certain database elements, mask data requested by a group of users, hosts or IP ranges, choose among the wide range of masking patterns for email addresses, phone numbers, CC numbers and other types of data, and set a time schedule.
AlloyDB Data Masking solution by DataSunrise is scalable and highly helpful for database security, access management purposes, and compliance with different national and international data security laws.