IBM Guardium

IBM Guardium

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
  • 1.  Discover Sensitive Data Using Groups

    Posted Tue June 23, 2020 05:07 AM
    Hey,
    I'm trying to make a classification rule using the "Compare to values in group" option to identify data.
    The problem is that I want to find data that is similar to the objects in the group and not only identical matches.
    For example if my group contains "banana" I want it to find "16 bananas" as well.
    Anyone knows how can I achieve this?

    ------------------------------
    Ron Shleif
    ------------------------------


  • 2.  RE: Discover Sensitive Data Using Groups

    Posted Thu June 25, 2020 07:31 AM
    Hi @Ron Shleif:

    We aren't using ​"Compare to values in group", but I'm curious if you've tried using wild cards (%banana for example)?

    ------------------------------
    Wendy
    ------------------------------



  • 3.  RE: Discover Sensitive Data Using Groups

    Posted Sun June 28, 2020 03:19 AM
    Hi Ron,

    You should go for wildcard option for group member . You can check the below link for group building.
    https://www.ibm.com/support/knowledgecenter/en/SSWL9Z_10.0.0/com.ibm.guardium.appmask.doc/adm/groups_overview.html

    Member Matches Does NOT Match
    aaa% aaa, aaazzz zzzaaa, aaz
    Thank you
    Sachin

    ------------------------------
    Sachin Shende
    Security Consultant
    IBM
    +91-9561-650-383
    ------------------------------



  • 4.  RE: Discover Sensitive Data Using Groups

    Posted Sun June 28, 2020 07:27 AM
    Hey Sachin, 
    Thanks for the reply.

    I have already tried using wildcards (%name%) for my group objects but it doesn't work either. From my experience with Guardium you need to use a "LIKE" comparison in order for wildcards to apply. The issue is that it seems that classification doesn't offer a "LIKE" option.

    Thanks,
    Ron

    ------------------------------
    Ron Shleif
    ------------------------------