Use Dynamic Knowledge Masking To Shield Delicate Knowledge In Azure SQL Database


On this article, we’ll cowl the Dynamic Knowledge masking matter and tips on how to masks the Database columns in Azure SQL Database by Azure Portal. Earlier than we start into this allow us to first perceive the idea of Dynamic Knowledge masking and its insurance policies.

What’s Azure SQL – Dynamic Knowledge masking?

Basically, dynamic information masking helps in hiding delicate data for unauthorized customers who’re accessing the info with minimal influence on the applying layer. It creates one layer of safety on high of knowledge. It is a policy-based safety function that helps in hiding the info because of a set of queries. We will masks the actual columns for which we really feel it is delicate data that can not be uncovered to different customers with none influence on the info within the database.

All the pieces it’s essential to know concerning the Dynamic Knowledge masking Insurance policies

There are three important insurance policies included on this Dynamic Knowledge masking

Admin customers are at all times excluded from masking

A bunch of SQL customers who’re all having admin privileges or Lively Listing Identities are excluded from information masking. Customers with out having entry will solely be capable of see the masked information whereas querying in SQL server administration studio or throughout the Azure portal.

What are Knowledge Masking Guidelines and why it’s required?

A algorithm will probably be relevant on the column degree of column information that customers need to encrypt with its particular kind over the SQL desk. You’ll be able to choose a masking rule for every supply area on the masking web page that you just need to masks. The guidelines you can choose from relying on the info kind of the sphere that you just need to masks.

What are Knowledge Masking Capabilities?

A overlaying capability characterizes how the Rule Engine veils data. The Rule Engine applies overlaying capacities to approaching SELECT SQL proclamations that unapproved buyer ships off the info set. Dynamic Knowledge Masking revises the SQL proclamation. On the level when the info set will get the solicitation, the knowledge base sends lined data to the client.

Implement Knowledge masking by Azure Portal

To configure the Knowledge masking we want the SQL Server and SQL Database needs to be configured contained in the useful resource group and to configure that, I’ve already made an article on that, Please undergo with the beneath hyperlink to arrange the Server and together with Database in Azure

Hyperlink: Azure SQL Server and SQL Database Setup

Open the Azure Portal and change to SQL Database whether it is already configured and within the left aspect menu there we discover an possibility Question Editor click on that possibility and login with credentials to question the info for any of the tables so there’s a desk already current in my database and can see how we are able to masks the info for particular columns.

Use Dynamic Data Masking to Protect Sensitive Data in Azure SQL Database

Within the Listing menu beneath the safety, there’s an possibility of Dynamic Knowledge masking click on on that the place it should take you to a different web page so as to add the masking configuration. On the appropriate aspect menu Click on on + Add masks  so as to add column particular configuration 

Admins are at all times excluded from this masking Knowledge, If somebody desires to examine the masking information they have to want particular entry to a database aside from this admin function with a purpose to see the masked information.

Use Dynamic Data Masking to Protect Sensitive Data in Azure SQL Database 

SQL – Masking Knowledge

Allow us to take the 2 columns from the person’s desk (Title, Telephone no) to be added as masking columns within the configuration. As soon as we reached to masking rule we have to choose the desk, column, and masking area format from the drop-down record and click on on Add within the high see the beneath picture.

Use Dynamic Data Masking to Protect Sensitive Data in Azure SQL Database

Let’s add one other column (Contact no) in the identical approach because the masking rule and we will see these two masking columns within the Knowledge masking dashboard with masks desk and together with its masks operate and click on on Save to use these needed adjustments to the SQL database.

Use Dynamic Data Masking to Protect Sensitive Data in Azure SQL Database

Testing the Knowledge masking columns

Login with one other person to examine the masked information for all of the customers besides the SQL admin. Open the Question editor and execute the person’s desk to see the masked information.

Use Dynamic Data Masking to Protect Sensitive Data in Azure SQL Database


We will examine the identical information within the SQL Server administration studio as effectively and I hope this text helps everybody in understanding the idea of Knowledge masking and its implementation.

Thanks for studying, please let me know your questions, ideas, or suggestions within the feedback part. I admire your suggestions and encouragement.

Hold Studying …!

Show More

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button