How To
Summary
You can integrate your Guardium® Data Protection with IBM Knowledge Catalog (IKC) to help ensure that data assets that are protected by IBM Knowledge Catalog Data Protection Rules are also extended at the data level using Guardium® Data Protection Query-rewrite (QRW) capability.
With the addition of data source-specific user-defined functions (UDFs), you can create IBM Knowledge Catalog data protection rules (such as masking or redacting sensitive information) that use Guardium query rewrite policies behind the scenes. This added level of protection and masking can be useful if your site manages data in both Guardium and IBM Cloud Pak® for Data. In addition, if you have very large amounts of data, using Guardium® to manage the data protection policies can be much faster.
Objective
Environment
Cloud Pak for Data validated version | Guardium patch version | Sniffer patch version |
---|---|---|
Cloud Pak for Data 4.6.5 and 4.7.1 with DPS 3.5.1280 | 12.0 | n/a (included with 12.0 release) |
Cloud Pak for Data 4.7.1 with DPS 3.5.1280 | 11.5 p530. | p4070 |
Cloud Pak for Data 4.6.5 with DPS 3.5.1280
|
11.5 p530 required for
row-level filtering for Hive, MS SQL Server, and MySQL.
|
p4070 |
Cloud Pak for Data 4.6.5 with DPS 3.5.1280
|
11.5 p525 required for row-level filtering for Oracle and PostgreSQL.
|
p4067 |
Cloud Pak for Data 4.6.5 with DPS 3.5.1280 |
11.5 p525 required for:
|
p4062 |
Cloud Pak for Data 4.6.3 and later | 11.5 p520 | p4055 |
Cloud Pak for Data 4.6.0 and later | 11.5 p510 | p4054 |
Steps
Guardium provides user-defined functions for the following data sources. For each set of UDFs that you need, download the UDF and read the Guardium WKC - UDF Installation Guides for information about how to download, install, and test the UDF for your data source.
Data source | Version | Environment | Minimum appliance and sniffer patch # | UDF download |
---|---|---|---|---|
Hive | Cloudera Data Platform 7.1.7 SP2 | Any operating system that supports Cloudera Data Platform 7.1.7 and Hive. |
App: 11.0p510
Sniffer: 11.0p4054
|
UDF |
Microsoft SQL Server |
SQL Server 2014 or 2016 |
|
App: 11.0p520
Sniffer: 11.0p4055
|
UDF |
MySQL | 5.5, 5.6, 5.7, 8 |
App: 11.0p510
Sniffer: 11.0p4054
|
UDF | |
Oracle | , Solaris 11 |
App: 11.0p510
Sniffer: 11.0p4054
|
UDF | |
PostgreSQL | PostgreSQL 11, 12, 13, 14 | RHEL 8.x |
App: 11.0p520
Sniffer: 11.0p4055
|
UDF |
Teradata |
App: 11.0p510
Sniffer: 11.0p4054
|
UDF |
Additional Information
- As of Cloud Pak for Data 4.8, Watson Knowledge Catalog is now IBM Knowledge Catalog.
- With Guardium 12.0 and Guardium 11.5 with the appropriate patches, row-level filtering is available for all data sources.
- Be sure to check for Prerequisites and known issues before you upgrade.
- For more information about the Guardium - IBM Knowledge Catalog integration, see Integrating with IBM Knowledge Catalog for federated data protection.
- For more information about creating masking policies with IBM Knowledge Catalog, see Designing data protection rules (IBM Knowledge Catalog) and Mask data with data protection rules (IBM Knowledge Catalog).
- For more information about installing user-defined functions for your data source, see the Guardium WKC - UDF Installation Guides
Internal Use Only
Document Location
Worldwide
Was this topic helpful?
Document Information
Modified date:
18 December 2023
UID
ibm16826047