Masking

Mask sensitive field values while retaining the formatting criteria

Objective

A technique commonly used by dynamic data masking within the RDBMS.

On-the-fly data obfuscation rules are executed on the source data event to enable PII data.

Certain fields are replaced with a mask character (such as an ‘XXX’). This removes the actual content while preserving the same formatting.

Example

Masks credit card details while preserving the pattern.

obfuscation:
  name: numberMasking
  fields:
    creditcard:
      masking:
        pattern: XXXX XXXX XXXX 1234
        mask: "*"

Attributes schema

AttributeDescriptionData TypeRequired

mask

Replacement character to be applied

Char

Default: *

pattern

Masking pattern to be applied to source string value

String

apply to all

Boolean to inform if all characters need to be replace using the mask value (true) or to apply pattern (false).

Boolean

Default: false

Last updated