[jira] [Created] (RANGER-5141) [Column Masking] : Security Loop hole for Columns having alphanumeric values using "Redact" Masking option

Abhishek Jain (Jira) Tue, 11 Feb 2025 20:38:07 -0800

Abhishek Jain created RANGER-5141:
-------------------------------------

             Summary: [Column Masking] : Security Loop hole for Columns having 
alphanumeric values using "Redact" Masking option
                 Key: RANGER-5141
                 URL: https://issues.apache.org/jira/browse/RANGER-5141
             Project: Ranger
          Issue Type: Bug
          Components: Ranger
    Affects Versions: 2.4.0
            Reporter: Abhishek Jain



Ranger partially exposes the columns having alphanumeric sensitive 
values(String DataType) if the column is masked using ranger's column masking 
policy with "redact" option.

_+*Steps to Reproduce:*+_

1) Create Hive table and insert data in it.

2) Create Ranger Column Masking Policy on a string type column (with 
alphanumeric values) for <testuser> with redact option.

3) Fetch this column using <testuser> user in hive/beeline.

_*With such behaviour, it becomes easier for the un-authorised users i.e 
<testuser> to guess these sensitive values of this particular column masked 
with "redact" option.*_



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (RANGER-5141) [Column Masking] : Security Loop hole for Columns having alphanumeric values using "Redact" Masking option

Reply via email to