Sensitive Data Masking¶
After data is collected and reported to the Guance workspace, sensitive information fields such as IP addresses and user information can be masked by setting up sensitive fields.
Note:
-
Different data types (including logs, base objects, resource catalogs, events, APM, RUM, security checks, network, Profile) can have their sensitive fields (field names are case-sensitive) configured individually;
-
After configuring field masking, string (
string) type field data will be displayed as***; -
Only members with added masking rules can view the original data after it has been distributed; other members will not be able to view unmasked information in the Explorer or charts.
Start Adding Rules¶
- Go to Manage > Sensitive Data Masking > Add Masking Rule;
- Define the name of the masking rule;
- Select the data type;
- Input the fields that need to be masked;
- Write a regular expression, i.e., configure masking for field values using regex syntax; currently supports either directly selecting from the template library or custom input;
- Click Preview, enter the original text, click Mask to see the masking effect.
- Select roles that need to be shielded from viewing the data;
- Click Confirm to view the configured sensitive fields.
As shown in the figure, Guance will mask the results matched by the left-side regular expression according to ***.
Manage Rules List¶
- Search: In the search bar on the right side of the page, you can directly input the rule name to search;
- Edit: Click to modify the current rule;
- Delete: If the current rule is no longer needed, click delete;
- Batch operations: In the rules list, you can batch enable, disable, or delete specific rules.