IBM Security Guardium: Policy Extrusion Rule for Particular Table

Question & Answer

Question

How can I configure my policy to have an extrusion rule on a particular table?

Cause

There are no object/table or field attributes in the policy builder.

Answer

An extrusion rule evaluates data returned by the server, that is a result set. For example:

A query is sent by the client and processed by an access rule: "select name, ssn from cust_info".

In response to this query, the database sent:
"John", "000-00-0000"
"Jane", "111-11-1111"

You can create extrusion rules that will process the result set and will mask out the returned data. An extrusion rule will cause Guardium to look for a pattern in the result set to mask. You can refine this further by adding an access rule for particular objects or procedures.

[{"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Guardium Data Masking Solution","Platform":[{"code":"PF016","label":"Linux"}],"Version":"10.0;10.0.1;10.1;10.1.2;10.1.3","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Tips

IBM Security Guardium: Policy Extrusion Rule for Particular Table

Question & Answer

Question

Cause

Answer

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?