Hi all,
I've seen some older threads on the forums discussing data masking for non-production environments, however the impression I get is that it is not widely used due to the issues caused in functional testing (eg if you want to do parallel comparisons with production data for a payroll).
Here at the University of Adelaide, our security experts are considering the approach of auditing access to sensitive data at the database level instead. What we need to do is to identify what they call Class 3 data, which they define as "Information containing personally identifiable information, medical records, personal information, or other confidential information."
Has anyone gone through that exercise across PeopleSoft Campus Solutions/HRMS 9, and/or Financials 9.1?
Would be interested to know the tools you used to identify all the tables in that category.
Thanks,
Vu
--
Vu Luc
PeopleSoft Services Team Leader
Technology Services
The University of Adelaide, AUSTRALIA 5005
Ph : +61 8 8313 7507
Mob: +61 (0)4 1881 2019
Fax : +61 8 8313 4400
e-mail:
vu.luc@adelaide.edu.auCRICOS Provider Number 00123M
-----------------------------------------------------------
This email message is intended only for the addressee(s)
and contains information which may be confidential and/or
copyright. If you are not the intended recipient please
do not read, save, forward, disclose, or copy the contents
of this email. If this email has been sent to you in error,
please notify the sender by reply email and delete this
email and any copies or links to this email completely and
immediately from your system. No representation is made
that this email is free of viruses. Virus scanning is
recommended and is the responsibility of the recipient.