question

Naga-4366 avatar image
0 Votes"
Naga-4366 asked Naga-4366 commented

how to handle sensitive data in ADLS with masking and encryption features

Hi team,

how to handle sensitive data in ADLS with masking and encryption features.

Please provide leads.

Regards,
NagaSri

azure-data-lake-storage
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

PRADEEPCHEEKATLA-MSFT avatar image
0 Votes"
PRADEEPCHEEKATLA-MSFT answered

Hello @Naga-4366,

Thanks for the question and using MS Q&A platform.

Azure Data Lake Gen2 has limited data security (no row-level, column-level, dynamic data masking, etc) and the difficulty in accessing it compared to accessing a relational database.

Azure SQL Database, Azure SQL Managed Instance, and Azure Synapse Analytics supports Row-Level Security, Column-level security and dynamic data masking.

Azure Data Lake Storage Gen2 implements an access control model that supports both Azure role-based access control (Azure RBAC) and POSIX-like access control lists (ACLs).

This article describes access control lists in Data Lake Storage Gen2. To learn about how to incorporate Azure RBAC together with ACLs, and how system evaluates them to make authorization decisions, see Access control model in Azure Data Lake Storage Gen2.

For more details refer the below articles:

ADLS Gen 2 supports both encryption-in-transit and encryption-at-rest.

For more details, refer to Azure Storage encryption for data at rest.

Alternative options: Masking Sensitive Data in Azure Data Lake

Hope this will help. Please let us know if any further queries.


  • Please don't forget to click on 130616-image.png or upvote 130671-image.png button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how

  • Want a reminder to come back and check responses? Here is how to subscribe to a notification

  • If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Naga-4366 avatar image
0 Votes"
Naga-4366 answered Naga-4366 commented

Thanks Pradeep.

Also, could you please provide some leads on how to decrypt data and use in power bi for analytics from ADLs.

Example - By using CRC32() function, have masked DOB column and saved the file in ADLs. Now want to use the same file for Analytics.

Thanks in advance!!


Regards,
NagaSri

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @Naga-4366,

The scope of the above ask was answered above. - Please don't forget to click on 130616-image.png or upvote 130671-image.png button whenever the information provided helps you.

For newer question could you please open a new thread?

0 Votes 0 ·

Hi Pradeep - Thanks, The above post (Granting ADLS Gen2 Access for Power BI Users via ACLs) which provide steps to connect ADLS from Power Bi.

But our question is regarding how to display masked data (after used CRC32) as normal data (um masked) to users.

Regards,
NagaSri

0 Votes 0 ·