SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Level 2: Datatypes and the Default Mask with Dynamic Data Masking


Level 2: Datatypes and the Default Mask with Dynamic Data Masking

Author
Message
Steve Jones
Steve Jones
SSC Guru
SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)

Group: Administrators
Points: 609884 Visits: 21168
Comments posted to this topic are about the item Level 2: Datatypes and the Default Mask with Dynamic Data Masking

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
kiwood
kiwood
Right there with Babe
Right there with Babe (784 reputation)Right there with Babe (784 reputation)Right there with Babe (784 reputation)Right there with Babe (784 reputation)Right there with Babe (784 reputation)Right there with Babe (784 reputation)Right there with Babe (784 reputation)Right there with Babe (784 reputation)

Group: General Forum Members
Points: 784 Visits: 121
My biggest concern is that they indicate length (or lack thereof) in the string types. While there are certainly cases where the type would be a security leak, most of those the idea that they can even get to what you show is the bigger leak. Further, most databases I have seen have names that convey far more information than the mask.

For instance I would expect "email" to be a string like type. I would expect "price" to be a number. If I were concerned about the type leaking out, I would also concern myself with purpose as well and ensure my column names gave no clue as to what the point of the column is.
Steve Jones
Steve Jones
SSC Guru
SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)SSC Guru (609K reputation)

Group: Administrators
Points: 609884 Visits: 21168
I don't think they indicate any particular length. Where did you get that? Perhaps I missed something here.

The masking does give you a datatype, and some of that is to protect your existing applications from breaking.

The names of the columns likely don't change since that's part of DB design, and obfuscating these means things become very complex for developers, and perhaps meaningless. The information in the app will tell you what the purpose of the column is. However people store dates as ints and varchars, so there is leakage here about the actual type.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Iwas Bornready
Iwas Bornready
SSC Guru
SSC Guru (66K reputation)SSC Guru (66K reputation)SSC Guru (66K reputation)SSC Guru (66K reputation)SSC Guru (66K reputation)SSC Guru (66K reputation)SSC Guru (66K reputation)SSC Guru (66K reputation)

Group: General Forum Members
Points: 66108 Visits: 886
Thanks for the article.
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum








































































































































































SQLServerCentral


Search