Microsoft: Get started with Dynamic Data Masking in SQL Server 2016 and Azure SQL

Dynamic Data Masking (DDM) is a new security feature in Microsoft SQL Server 2016 and Azure SQL DB. The main documentation is here(also see link under Resources at end). This post is a quick how-to intro to DDM, including applying it in a database and managing which principals see masked or unmasked data. I’ll also answer a few questions that commonly come up.

What is DDM?

Picture this scenario. You have a database table which storessensitive data, such as social security numbers, in the clear (unencrypted). Anyone with appropriate access can runselect *against this table and see all the sensitive data.

This becomes a concern in organizations where production data is periodically restored into development, test, and/or staging environments. Developers, testers, and other people need to work with the data, but have visibility to sensitive data. This is clearly concerning (and may be unlawful in some jurisdictions). How do we give these roles the data they need, while protecting sensitive data?

Read the entire article here, Get started with Dynamic Data Masking in SQL Server 2016 and Azure SQL DB Patrick’s Azure Blog

via the fine folks at Microsoft

时间: 2024-12-20 11:31:31

Microsoft: Get started with Dynamic Data Masking in SQL Server 2016 and Azure SQL的相关文章

Azure SQL Database (23) Azure SQL Database Dynamic Data Masking动态数据掩码

<Windows Azure Platform 系列文章目录> 我们在使用关系型数据的时候,有时候希望: - 管理员admin,可以查看到所有的数据 - 普通用户,某些敏感字段,比如信用卡,电子邮件等字段都是屏蔽的 在这种情况下,就可以使用Dynamic Data Masking动态数据掩码,对数据表的某些字段进行屏蔽. 比如我们对用户的信用卡信息.邮箱地址进行屏蔽,可以起到保护用户隐私的作用. 动态数据屏蔽策略: 1.不对其进行屏蔽的SQL用户:一组可以在 SQL 查询结果中获取非屏蔽数据的

SQL Server -&gt;&gt; SQL Server 2016新特性之 -- Dynamic Data Masking

Dynamic Data Masking是为了防止敏感数据暴露给未经授权的用户,以一种最小开销和维护成本的形式.Dynamic Data Masking用于表的字段,相当于盖住字段数据的一部分.比如一些像邮件或者工资这样敏感的数据,涉及PII的,我们可以运用这个功能.运用这个功能的步骤,首先先定义一组人(database role)可以拥有看数据的权限,然后GRANT UNMASK权限给这个角色组.微软提供了4种类型的masking给我们选择:default,email,random和custo

Microsoft SQL Server Version List(SQL Server 版本)

原帖地址 What version of SQL Server do I have? This unofficial build chart lists all of the known Service Packs (SP), Cumulative Updates (CU), patches, hotfixes and other builds of MS SQL Server 2014, 2012, 2008 R2, 2008, 2005, 2000, 7.0, 6.5 and 6.0 tha

Microsoft SQL Server 2016 RC3 安装

首先下载SQL Server 2016 RC3 安装iso 下载链接 ed2k://|file|cn_sql_server_2016_rc_3_x64_dvd_8566578.iso|2464823296|D648877A38C788E257C4F16AF62029CD|/ 来源:msdn.hk 第一步 运行安装文件向导,点击第一个选项进行安装sql服务器引擎,与其他版本安装步骤差不多. 安装前需要java jdk 1.7环境 第二步 安装ssms(Microsoft SQL Server Ma

MMC不能打开文件D:\Program Files\Microsoft SQL Server\80\Tools\BINN\SQL Server Enterprise Manager.MSC

以上问题的解决方式如下: 1. 打开windows运行对话框.在对话框输入mmc.打开了如图所示的控制台. 2. 文件---添加/删除管理单元(M). 3. 添加.然后选择Microsoft SQL 企业管理器.添加. 4. 文件---选项---用户模式-完全访问---应用---确定. 5. 回到控制台,另存为C:\ProgramFiles\MicrosoftSQLServer\80\Tools\BINN\SQLServerEnterpriseManager.MSC MMC不能打开文件D:\Pr

Problem to create &quot;New Database Diagram&quot; in Microsoft SQL Server Management Studio for SQL Server 2012

Error: when click "New Database Diagram", a error popped up and said "Attempted to read or write protected memory. This is often an indication that other memory is corrupt. (Microsoft.VisualStudio.OLE.Interop)" Related Link: https://so

sql server 里面的 dynamic Data Masking

有时候啊,当我们存放在数据库里面的数据,需要明文存放,但是对于前台查询出来的,又不太希望明文放出去的时候(比方说客户的手机啊,邮箱啊)之类有点敏感的信息,之前通常是保存个明文,然后在前台展现的时候再特殊处理一下,然后就ok了. 而现在呢,在2016提供了data mask的功能,可以遮掩对应列的一些基础信息 事不宜迟,先做样例 1 create table t2(ID int identity,Name nvarchar(50),PWD varchar(20),Phone varchar(50)

SQL Server -- 下载 SQL Server Data Tools (SSDT)

https://docs.microsoft.com/zh-cn/sql/ssdt/download-sql-server-data-tools-ssdt SQL Server Data Tools 是一款可免费下载的现×××发工具,用于生成 SQL Server 关系数据库.Azure SQL 数据库.Integration Services 包.Analysis Services 数据模型和 Reporting Services 报表. 使用 SSDT,你可以设计和部署任何 SQL Serv

P6 Professional Installation and Configuration Guide (Microsoft SQL Server Database) 16 R1

P6 Professional Installation and Configuration Guide (Microsoft SQL Server Database) 16 R1       May 2016 Contents About This Guide...................................................................................... 11 Shared Topics in This Guide .