Logs

Detect & Mask Sensitive Logs

Problem

Businesses have application logs that contain sensitive data. That sensitive data needs to be redacted or scrubbed for following reasons

  • Compliance: GDPR, HIPAA, CCPA and many other privacy laws enforce all customer sensitive data to be scrubbed/redacted/or not accessible after certain time period.
  • Security: Insider attacks are common where employees who have access to customer's sensitive data lead to data exfiltration

Solution

Strac Log Redactor is a Data Loss Prevention (DLP) software. It masks (aka redacts) sensitive data elements in logs while still giving the opportunity to authorized users to view those logs in Strac UI Vault. A business can configure a list of sensitive data elements (SSN, DoB, DL, Passport, CC#, Debit Card, API Keys, etc.) to redact. Compliance, Risk and Security officers will get audit reports of who accessed what logs.

Below is a sample list of sensitive data elements that will be detected & redacted:

  • Identity: Drivers License, Passport, SSN (Social Security Number), etc.
  • PII: Name, Address, Email, Phone, DoB, Age, Gender, Ethnicity, etc.
  • PHI: PII data, Medical Record Number (MRN), Medical Notes, etc.
  • Payments: Bank Account, Routing Numbers, Credit Card, Debit Card, etc.
  • Secrets: API Keys, Passwords, Passphrases etc.
  • Physical Network: IP Addresses, MAC Address, etc.
  • Crypto Secrets: Bitcoin, Ethereum, Litecoin Addresses, etc.
  • Custom: Create your own rules or use regex

Support

Please contact hello@strac.io for any questions