AN SSIS DATA MASKING SOLUTION
AVERAGE ORGANIZATIONS RISKS OF EXPOSED PII Personally Identifiable Information sensitive and critical organizational resource Credit Card Numbers Social Security Numbers Names DOBs PII PII Data in non-production environments is exposed to domestic and international development personnel Of the 80 of internal fraud cases, 34 % involved Personally Identifiable Information
HIGH PROFILE PRIVACY BREACHES MONEY GRAM $100,000,000 fine Involved in fraud due to PII exposure in 2009, 2012 Now uses IBM data masking software Optim per GLBA The software installation itself costs millions of $$$ HEARTLAND PAYMENT SYSTEMS 130M credit card numbers Albert Gonzalez used SQL injection in internal storage Now it implements end-to-end encryption
PRIVACY COMPLIANCE FINANCIAL HEALTH / PHARMA ECOMMERCE SOLUTION The Gramm-Leach-Bliley Act (GLBA) , US Congress 1999. HEALTH / PHARMA Health Insurance Portability and Accountability Act(HIPAA/HITECH), US Congress 1996. ECOMMERCE Payment Card Industry Data Security Standard (PCI DSS), Payment Card Industry Security Standards Council. SOLUTION Masking data in non-production environments. Identity based masking in production environments.
DATA MASKING DEFINITION The process of masking specific data elements within data store while preserving data look and feel and usability in applications. ALGORITHMIC CHALLENGE DATA INTEGRITY CHALLENGE
WHY HUSH HUSH? SIMPLE DRAG N DROP ALGORITHMS LOWERING OVERALL COST Easy to use Little training required “Time to Market” DRAG N DROP ALGORITHMS Yet highly customizable. LOWERING OVERALL COST INTRODUCING JUST IN TIME PRIVACY PROTECTION
ESSENCE OF IMPLEMENTATIONS VARIETY OF ALGORITHMS Format Preserving Encryption (FPE) variation: performance and less development time vs acceptable degrees of security risks (AES–like, Advanced Encrypion Standard) Random substitution: inability to decrypt due to randomness, yet much longer development, need to maintain additional structures HIGHLY CUSTOMIZABLE We can customize components per request and roll into the next version, providing support Changing City, State and Zip in conjunction for reporting Specific Credit Cards based on the Vendor Keeping a domain in email preserved Gender Based First Names
AT EXTRA FEE: CONTACT US : Customization SSIS framework development Integration into SDLC CONTACT US : E-mail: info@mask-me.net Phone: 213.631.1854