DataSunrise Dynamic Data Masking for Percona

Percona Server data masking tool by DataSunrise protects the confidentiality of sensitive data from unintentional data leaks and insider threats. After obfuscation information still remains usable for the purposes of undertaking valid test cycles by outsourced developers. Indicate which part of the information must be hidden, create a masking rule appropriate for your corporate needs or select among various pre-defined patterns (for credit card number, e-mail, phone, etc).

Tech Info

Data Obfuscation for Percona Server

Hiring external developers for conducting tests and application development is in common practice although it has some security threats. Companies storing clients’ personal information or corporate secrets have to pay attention in order to protect the confidentiality of their database contents. Percona data masking tool by DataSunrise changes the original records with fictive data or random characters. Records undergo enough changes so that they can’t be retrieved using reverse engineering, while they still remain meaningful on the application layer.

Masking is also an effective access privilege assignment tool for various business needs, like sharing corporate data with outsource partners or call center department. Social security and credit card numbers can be replaced with realistic values.

DataSunrise is designed to be effective and simple. The soft is deployed with minimum effort and its customizable settings allow to maximally simplify working with the system. It performs masking dynamically at the time of request, which means there is no need to copy the database.

How data masking is performed

Let’s see the masking abilities of DataSunrise on the example of this table with personal identifiable information:

screenshot_4

First of all we need to create masking rules for the columns we want to hide. Rule settings allow to select masking schedule, users from whom the columns will be concealed and choose masking type. There are ready patterns for different types of data (like date, credit card number, email, etc).

We applied different obfuscation types for all columns except the ones with names and phone numbers. After saving rules we tried to retrieve the same table again. DataSunrise functions as a proxy for database users, so it intercepts the query from our application and changes it according to masking rules. Updated query goes to the database and grants a user masked data. The output result is given below:

screenshot_5

Percona data masking tool by DataSunrise replaces real data with fictive values, remaining it available for tests and application development. It minimizes the risk of sensitive data leak and gives the opportunity to share the database with third-party organizations without violating privacy and security regulations of confidential data.

Related Articles