Define a dynamic data maskĪ masking rule may be defined on a column in a table, in order to obfuscate the data in that column. For more information about configuring dynamic data masking by using the Azure portal, see Get started with SQL Database Dynamic Data Masking (Azure portal). Dynamic data masking is complementary to other SQL Server security features (auditing, encryption, row level security, etc.) and it's highly recommended to use it with them in order to better protect the sensitive data in the database.ĭynamic data masking is available in SQL Server 2016 (13.x) and Azure SQL Database, and is configured by using Transact-SQL commands. Dynamic data masking doesn't aim to prevent database users from connecting directly to the database and running exhaustive queries that expose pieces of the sensitive data. The purpose of dynamic data masking is to limit exposure of sensitive data, preventing users who shouldn't have access to the data from viewing it. Simple Transact-SQL commands define and manage masks.DDM features full masking and partial masking functions, and a random mask for numeric data.Designate privileged users or roles that do have access to the sensitive data.A central data masking policy acts directly on sensitive fields in the database.Many applications can mask sensitive data without modifying existing queries. DDM is easy to use with existing applications, since masking rules are applied in the query results. With DDM, the data in the database isn't changed. DDM can be configured on designated database fields to hide sensitive data in the result sets of queries. It can be used to greatly simplify the design and coding of security in your application.ĭynamic data masking helps prevent unauthorized access to sensitive data by enabling customers to specify how much sensitive data to reveal with minimal effect on the application layer. SQL Server 2016 (13.x) and later Azure SQL Database Azure SQL Managed Instance Azure Synapse Analyticsĭynamic data masking (DDM) limits sensitive data exposure by masking it to nonprivileged users.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |