Simplified Data Masking. Simplified Compliance.

By Harold Byun, VP Products | November 4, 2019

Last week, we announced a new offering in our product portfolio — simplified data masking and exfiltration control. The solution provides organizations with an end-to-end data control mechanism that restricts views of the data at the application tier, while also supporting encryption at the field or record level in the back-end tier.

We believe that the data breaches of today continue to happen because the strategies that people are using to protect against a data theft threat model is incomplete or protecting against the wrong threat.

Baffle’s Data Masking and Exfiltration Control does not require any code changes and allows companies to easily protect their non-prod environments and comply with the latest data privacy regulations such as GDPR and CCPA. The solution enables dynamic data masking and also policy-based controls to mitigate bulk data exfiltration risks.

Here’s a quick demo of the masking capabilities and how simply it can be implemented:

A brief listing of capabilities is listed below:

Baffle Data Masking and Exfiltration

Simplified Data Masking – Baffle Data Masking enables field-level and record-level masking of data with no application code changes. This allows organizations to protect data faster and without over- hauling their architecture.

Flexible Data Formats – Support for variable formats, fixed string or numeric replacement, date and timestamp, bit or binary length fields, and random generation of characters or numbers. Broad flexi- bility in data formats helps ensure applications are easily supported and business processes remain in tact.

Secure Third Party Data Sharing – Easily mask and control access to specific fields to minimize the exposure of data to third party suppliers and collaborators.

Dynamic Data Entitlements (DDE) – A policy-based method to automatically apply masking based on specified parameters or data owner identification. DDE enables additional contextual controls to be applied to access to data.

Data Exfiltration Control – Data Masking can be applied based on policies and in bulk data exfiltration scenarios, can automatically mask data as it is exfiltrated. This method helps mitigate data breach risk and reduces penalties incurred under the latest data privacy regulations.

Some useful links