Creating Data Security Levels

Prerequisites

At least one security level has been created based on Creating a Security Level.

Constraints

• According to the industry common practice, a larger number indicates a higher security level. A maximum of 10 security levels can be created.
• Only the DAYU Administrator, Tenant Administrator, or data security administrator can create, modify, or delete data security levels, classifications, and identification rules. Other common users do not have permission to perform these operations.
• After the default security level is configured, it applies to all the data tables and fields (including inventory and incremental data) that have no security levels in MRS Hive and GaussDB(DWS) data sources. The default security level can be displayed in Data Map and can be used to control permissions for data preview based on Managing Sensitive Data.

  

  The security levels displayed during permission requests are from Data Map and include the default security level. The security levels displayed during static and dynamic masking are from sensitive data discovery tasks and do not include the default security level.

• Data security levels that are referenced can be deleted only if the reference is canceled.

Creating a Security Level

1. On the DataArts Studio console, locate a workspace and click DataArts Security.
2. In the left navigation pane, choose Data Confidentiality.
   Figure 1 Data Confidentiality page
   

3. On the displayed page, click Create and set the parameters listed in Table 1.
   Figure 2 Creating a data security level
   

   Table 1 Parameters

   Parameter	Description
   *Name	The security level name can include only letters, numbers, and underscores (_). After a security level is created, its name cannot be edited.
   Description	All characters can be entered in a security level description. After a security level is created, you can edit its description.

   

   By default, security levels are displayed in ascending order. You can also move a security level up or down as required.

Configuring the Default Security Level

You can configure the default security level for the assets in MRS Hive and GaussDB(DWS) data sources.

1. On the DataArts Studio console, locate a workspace and click DataArts Security.
2. In the left navigation pane, choose Data Confidentiality.
   Figure 3 Data Confidentiality page
   

3. Select a security level from the Default Security Level drop-down list box in the upper right corner as the default security level.
   After the default security level is configured, it applies to all the data tables and fields (including inventory and incremental data) that have no security levels in MRS Hive and GaussDB(DWS) data sources. The default security level can be displayed in Data Map and can be used to control permissions for data preview based on Managing Sensitive Data.

   

   The security levels displayed during permission requests are from Data Map and include the default security level. The security levels displayed during static and dynamic masking are from sensitive data discovery tasks and do not include the default security level.

   Figure 4 Creating a data security level
   

Related Operations

• Adjusting a security level: On the Data Confidentiality page, locate a security level, click More in the Operation column, and select Up or Down.
• Editing a security level: On the Data Confidentiality page, locate a security level and click Edit in the Operation column to change the description of the security level.
• Deleting one or more security levels: On the Data Confidentiality page, locate a security level and click Delete in the Operation column to delete the security level. To delete multiple security levels, select them and click Delete above the list.
  

  • Data security levels that are referenced can be deleted only if the reference is canceled.
  • The deletion operation cannot be undone. Exercise caution when performing this operation.