Troubleshooting
Problem
As part of the data protection services offered by IBM Security Guardium™, it is possible to hide or mask all or part of the result set of a query, in order to protect sensitive information from unauthorized entities or users.
This can be implemented through the use of a feature named REDACT (sometimes referred to as DATA REDACT, or SCRUB), which consists of configuring at least one EXTRUSION rule in any of the policies installed on a Guardium™ Collector and configuring the S-TAP to provide this type of service.
When configuring REDACT, a corresponding rule in the data security policy must include one regular expression, which Guardium™ uses to identify the data to be protected.
During the process, it may happen that the data is not masked correctly, even if the data to be protected matches with the provided PCRE (Perl Compatible Regular Expressions) regular expression. Specifically, if the regular expression uses the valid notation to represent a given number of characters, which is represented by curly braces ("{" and "}"), and the source database server is running on Microsoft™ Windows.
Symptom
Assuming all the configurations required to use REDACT are correct, the main symptom is that the data to be protected is not masked.
Example.
When the problem occurs, the data in the result set that matches the configured regular expression is displayed in plain text.
Suppose that an EXTRUSSION rule is created to mask data that matches the regular expression ([0-9]{4})[0-9]{2}. From the graphical user interface (GUI), a simple test is performed with the data 987654321. The GUI shows the data matches the regular expression, so it is expected that Guardium™ masks 4 digits (the portion in parentheses) when some traffic contains this data and any other matching.
However, the data is not protected as expected, and is displayed as is instead.
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB76","label":"Data Platform"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"ARM Category":[{"code":"a8m0z0000001es1AAA","label":"DATA REDACTION"}],"ARM Case Number":"","Platform":[{"code":"PF033","label":"Windows"}],"Version":"All Versions"}]
Log InLog in to view more of this document
This document has the abstract of a technical article that is available to authorized users once you have logged on. Please use Log in button above to access the full document. After log in, if you do not have the right authorization for this document, there will be instructions on what to do next.
Was this topic helpful?
Document Information
Modified date:
02 November 2022
UID
ibm16834148