Table of Contents

Search

  1. Preface
  2. Starting Data Archive
  3. System Configuration
  4. Database Users and Privileges
  5. Source Connections
  6. Target Connections
  7. Archive Store Configuration
  8. Datatype Mapping
  9. Database Optimization
  10. SAP Application Retirement
  11. z/OS Source Data Retirement
  12. Seamless Data Access
  13. Data Discovery Portal
  14. Security
  15. SSL Communication with Data Vault
  16. LDAP User Authentication
  17. Auditing
  18. Running Jobs from External Applications
  19. Salesforce Archiving Administrator Tasks
  20. Upgrading Oracle History Data
  21. Upgrading PeopleSoft History Data
  22. Data Archive Maintenance
  23. Appendix A: Datetime and Numeric Formatting
  24. Appendix B: Data Archive Connectivity

Administrator Guide

Administrator Guide

Masking Sensitive Information in Data Vault

Masking Sensitive Information in Data Vault

You can prevent sensitive information in Data Vault from appearing in search results and in data visualization reports.
You can selectively mask or block sensitive information based on user privileges. For example, a user has the privilege to access an entity containing employee information through Data Discovery. The entity includes fields for salary and birth date. If the user does not have the privilege to view salaries and birth dates, then the salary and birth date fields appear as Xs instead of the real value.
To prevent a user or application from accessing sensitive data, you must install and configure Informatica Dynamic Data Masking. You define rules in Dynamic Data Masking to specify the data to mask and who to display masked data to.
You can specify how to display masked data. For example, you can choose to replace values partially or completely with randomly generated characters or predefined characters. Or, you can choose to block sensitive fields from appearing in search results or in reports.
When a user queries the Data Vault, the masking rules apply to the search results presented to the user.
After you enable masking, Data Archive protects sensitive information about the user querying Data Vault. Data Archive encrypts the user ID and user access roles in the Data Archive logs and in the query sent to Dynamic Data Masking.

0 COMMENTS

We’d like to hear from you!