Skip to Content

Format Preserving Encryption Rule Actions

Format preserving encryption rule actions replace data with similar data to preserve data privacy. For example, numbers can be replaced with other numbers, and text with other text (using the same code page). A rule can contain one or multiple encryption rule actions as well as other types of rule actions.

To add an encryption rule action:

  1. Open the desired repository and project.
  2. Click the Rules tab, and select the desired rule. The list of rule actions appears in the Rule Action tab portion of the window.
  3. To add a new rule action, click Add. The Create Rule Action wizard appears.
  4. Select Format Preserving Encryption and click Next.
  5. Type a name for your rule action. You can have more than one rule action per rule, but each rule action name must be unique within the rule.

  6. Select Managed Key or enter an encryption key. The key you enter will appear as asterisks for security purposes. To show the actual key value instead of asterisks, check the Display key value box. Data Privacy supports Unicode, so the encryption key can be any character or group of characters and is case sensitive.

    Warning

    Important

    Managed encryption keys must be created before they can be used, and they are created through Resource Administration. After creation, they will appear in the list for selection. For more information, see Manage Encryption Keys and Define Encryption Key Wizard.

  7. Select either Encrypt or Decrypt as your desired action.

  8. Each rule action needs at least one data element or variable to identify the data to encrypt or decrypt. Select one or more project resources from the list.

    For more information, see Create a New Data Element and Create a New Rule Variable.

    Warning

    Important

    String list and number list variables are not available for selection when defining encryption rule actions.

  9. If desired, enter a field mask. For more information, see Field Mask Processing.

    Your rule action now appears in the list of rule actions.

  10. Expand the Advanced section if changes are needed for code page or custom encryption routines.
    • If you need to use a code page other than the default, select one from the Code Page to be used for this encryption drop-down list. Choosing a code page is only required when your source data doesn't match the default code page. For example, DBCS data requires a different code page than English data requires.

    • If you need to use a custom encryption routine, select one from the Custom Encryption Routine drop-down list. All custom encryption routines must be registered before being used. Use the Resource Administration task for Manage Custom Functions to register your custom encryption routine.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Compuware Topaz Workbench 20.06