IBM Security Guardium

hi all,

I  want to do redaction for some data in MS-SQL server but it is not working fine. Is there any possibility to add column name and table name in Guardium Extrusion policy?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Hey there

This feature works based on a regular expression to match, and you can replace with an arbitrary character. If you need to do something based on field and table name, there is another functionality that may work for you.

This functionality is called Query Rewrite (https://www.ibm.com/support/knowledgecenter/SSMPHH_11.1.0/com.ibm.guardium.doc/protect/query_rewrite.html). It allows to transform a query and replace fields or SQL verbs, then you can do something like . MSSQL is supported.

Take a look here :
https://www.youtube.com/watch?v=3YMxGmFCqzk

Regards,

------------------------------
Gonzalo Andres Lorca Cid
------------------------------

Original Message:
Sent: Wed April 01, 2020 04:46 AM
From: PHANENDRA RAO CHAVANA
Subject: Redaction issue for MS SQL Database

hi all,

I  want to do redaction for some data in MS-SQL server but it is not working fine. Is there any possibility to add column name and table name in Guardium Extrusion policy?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

hi,

Thank you so much. Do we get any videos for IBM guardium like Jose Bravo for Qradar SIEM?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Original Message:
Sent: Thu April 02, 2020 09:18 AM
From: Gonzalo Andres Lorca Cid
Subject: Redaction issue for MS SQL Database

Hey there

This feature works based on a regular expression to match, and you can replace with an arbitrary character. If you need to do something based on field and table name, there is another functionality that may work for you.

This functionality is called Query Rewrite (https://www.ibm.com/support/knowledgecenter/SSMPHH_11.1.0/com.ibm.guardium.doc/protect/query_rewrite.html). It allows to transform a query and replace fields or SQL verbs, then you can do something like . MSSQL is supported.

Take a look here :
https://www.youtube.com/watch?v=3YMxGmFCqzk

Regards,

------------------------------
Gonzalo Andres Lorca Cid

Original Message:
Sent: Wed April 01, 2020 04:46 AM
From: PHANENDRA RAO CHAVANA
Subject: Redaction issue for MS SQL Database

hi all,

I  want to do redaction for some data in MS-SQL server but it is not working fine. Is there any possibility to add column name and table name in Guardium Extrusion policy?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Hi Phanendra,

There are a lot of videos as well as other resources available within the IBM Security Learning  Academy, the majority of which are free: https://www.securitylearningacademy.com/local/navigator/index.php?level=dsds01

I hope that some of these are useful to you.

It is frequently being updated so please keep referring back to it if you need to learn more about Guardium.

Best regards

Chris

------------------------------
Chris Beaney
Data Security Support Manager - Europe, Middle East & Africa
IBM
------------------------------

Original Message:
Sent: Sun April 05, 2020 04:44 AM
From: PHANENDRA RAO CHAVANA
Subject: Redaction issue for MS SQL Database

hi,

Thank you so much. Do we get any videos for IBM guardium like Jose Bravo for Qradar SIEM?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA

Original Message:
Sent: Thu April 02, 2020 09:18 AM
From: Gonzalo Andres Lorca Cid
Subject: Redaction issue for MS SQL Database

Hey there

This feature works based on a regular expression to match, and you can replace with an arbitrary character. If you need to do something based on field and table name, there is another functionality that may work for you.

This functionality is called Query Rewrite (https://www.ibm.com/support/knowledgecenter/SSMPHH_11.1.0/com.ibm.guardium.doc/protect/query_rewrite.html). It allows to transform a query and replace fields or SQL verbs, then you can do something like . MSSQL is supported.

Take a look here :
https://www.youtube.com/watch?v=3YMxGmFCqzk

Regards,

------------------------------
Gonzalo Andres Lorca Cid

Original Message:
Sent: Wed April 01, 2020 04:46 AM
From: PHANENDRA RAO CHAVANA
Subject: Redaction issue for MS SQL Database

hi all,

I  want to do redaction for some data in MS-SQL server but it is not working fine. Is there any possibility to add column name and table name in Guardium Extrusion policy?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Redaction - all extruded values from identified by extrusion session are analyzed on STAP level

It is a reason why SQL analysis is not available. Please imagine system overload with thousands of sessions and necessity to manage full session stack on monitored machine to correlate SQL and its results.

QRW - mentioned by Gonzalo allows us to analyze referred objects and redact output BUT:

I do not see a reason to redact data for non-application sessions. In most cases much more suitable is blocking functionality. If identified user is not authorized to get access to sensitive object we should block this access. If some data from sensitive table should be accessible I suggest create view to provide this access.

------------------------------
Zbigniew (Zibi) Szmigiero
IBM
Warsaw
------------------------------

Original Message:
Sent: Wed April 01, 2020 04:46 AM
From: PHANENDRA RAO CHAVANA
Subject: Redaction issue for MS SQL Database

hi all,

I  want to do redaction for some data in MS-SQL server but it is not working fine. Is there any possibility to add column name and table name in Guardium Extrusion policy?

Thanks,
Phanendra Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------