Kevin Wilkie puts on the mask:
The premise behind data masking is fairly simple – make it so that only certain people can see the data in a certain column. For example, social security numbers or credit card numbers probably shouldn’t be seen by everyone who has access to your database.
I like to set it up as follows: (Obviously, this can change depending on your business’ policies.)
- Admins have full access.
- Call Center Representatives have access to the last 4 digits of the social.
- All others see nothing useful.
Read on to see how. I’ll even save my normal “data masking isn’t really a security feature” rant. This time.