Overview
Explore strategies for protecting and sharing sensitive data in this RailsConf 2022 talk. Learn how to navigate the challenges of data security, including HIPAA compliance, while still providing necessary access to production data. Discover techniques for data anonymization, static and dynamic masking, and secure database dumps. Gain insights on when to restrict access and when to carefully open the door to information sharing. Understand the importance of defining rules, implementing security labels, and utilizing anonymization tools to minimize the risk of data leaks while maintaining operational efficiency.
Syllabus
Intro
Warmup questions
What is HIPA
How did it happen
Data anonymization
Demo
Static masking
Defining rules
Security Labels
Anonymize
Dynamic masking
Database dumps
Conclusion
Taught by
Ruby Central