sql sql-server sql-server-2008 t-sql data-masking

Character mask output data on select

I'm using SQL Server 2008.

I would like to character mask the output data of a query.

This is my data from a column on a table when doing a select:

column1

384844033434

743423547878

111224678885

I would like an output like this:

column1

384xxxxxx434

743xxxxxx878

111xxxxxx885

How can I do this?

Solution

You would have to use a view, and deny all users SELECT access to the underlying table.

Your view would look something like

SELECT 
     SUBSTRING(x.SecurityNumber,1,3) + 
     'xxxxx' + 
     SUBSTRING(x.SecurityNumber,LEN(x.SecurityNumber) - 2, LEN(x.SecurityNumber))
     AS column1
FROM underlyingTable x

You could then grant your users SELECT access to just this view and have the out masked in the way you described.

If you wanted your client software to be able to insert or update data in this table, you would use an INSTEAD OF INSERT or INSTEAD OF UPDATE trigger to update the base table.

Get identity of row inserted in Snowflake Datawarehouse
Date and time range filter in SQL
I want to choose hiredate between '20-FEB-81' AND '01-MAY-81'
Find the penultimate activity for each user
SQL to Group By top n occurring SKUs
Can't Save SQL Query in 2sxc SQL DataSource
Substring between 2 strings in Oracle SQL
BigQuery select * except nested column
SQL Query to Get DB2 Version on IBM i
Python list in SQL query as parameter
Fire a trigger after the update of specific columns in MySQL
MySQL auto-increment between tables
How can I use the LIKE operator to match certain characters exactly
Updating and join on multiple rows, which row's value is used?
How to select both sum value of all rows and values in some specific rows?
Get the top N rows by row count in GROUP BY
Postgres unique constraint vs index
SQL SELECT TOP 1 FOR EACH GROUP
How to get table name from dbms_tf.table_t in table macro
How do I remove NULL values when extracting JSON to generated columns?
SQL Multiple Columns in IN clause to convert to JPA
Add a column based on the value of an existing column
How to extract convert date in written text to numeric
Find a value based on all its present combinations with a value in another field in Postgres
Perform aggregations with two tables with same structure
MySQL column that will check if a date column is past 30 days
Query a custom view from Sage 100 ODBC
Can I include the table name in the result of an SQL query?
How does a Recursive CTE know to only process records added during the last iteration (and not looking at all of them)?
How to insert a line break in a SQL Server VARCHAR/NVARCHAR string