Help Center/ DataArts Insight/ User Guide/ Creating a Dataset/ Column Permissions/ Data Masking Rule
Updated on 2025-05-20 GMT+08:00
View PDF
Share

Data Masking Rule

Scenario

After specifying the fields in a dataset that require masking, the system will apply obfuscation techniques to the sensitive data in those fields, ensuring it is displayed in a desensitized format to protect its security.

Prerequisites

A dataset has been created by referring to Creating a Dataset Through Visual Configuration.

Procedure

  1. Log in to the DataArts Insight console.
  2. Click in the upper left corner of the management console to select a region. Then, select an enterprise project in the upper right corner.
  3. On the top menu of the console, click Project. On the displayed My Projects page, click the name of the desired project.
  4. In the navigation pane on the left, choose Data Management > Datasets.
  5. On the displayed page, locate the dataset for which you want to configure deny rules, click More in the Operation column, and select Column Permissions.
  6. In the slide-out panel, toggle Column Permissions on and click Create Rule.
    1. In Field, select one or more dimension and metric fields you want to authorize.
    2. Set Permission Rules to Data masking and select a masking rule. For details about the masking rules, see Table 1.
      Table 1 Data masking rules

      Rule

      Description

      ******

      The masked fields are represented by six asterisks (*) and are fully concealed.

      XXX***XXX

      The first and last three characters are reserved, while the middle characters are concealed.

      ***XXX***

      The three characters in the middle are reserved, and the other characters concealed.

      Retain characters before N and after M

      All characters except the specified ones are concealed.

      Retain characters between N and M

      All characters except the specified ones are concealed.

      Keep special characters

      All characters except the specified ones are concealed.

      Mask characters before special characters

      All characters except the specified ones are concealed.

      Mask characters after special characters

      All characters except the specified ones are concealed.
    3. Set Effective Scope. The options are:
      • Apply to all users: All users can view only the masked field values.
      • Apply to specific users:
        • The specified users or user groups can only view the masked field values.
        • Other users and user groups can view complete field values.
      • Exclude specific users:
        • The specified users and user groups can view complete field values.
        • Other users and user groups can view only the masked field values.

      DataArts Insight allows users, regardless of their dataset permissions, to view the plaintext of desensitized columns by clicking on the dashboard or by right-clicking on the large screen and choosing View data from the shortcut menu.

  7. Click OK.
Parent topic: Column Permissions