Data Obfuscation is a Perspectium function for ServiceNow that allows for the creation of obfuscation rules per the General Data Protection Regulation (GDPR) for data shared using dynamic shares and bulk shares.
Creating data obfuscation rules
To enable data obfuscation for your dynamic shares and bulk shares, follow these steps:
Navigate to Dynamic Share or Bulk Share
Log into your source ServiceNow instance and navigate to Perspectium > Replicator > Dynamic Share or Bulk Share.
Edit your dynamic share or create a new bulk share
Click into the dynamic share that you want to enable data obfuscation for or create a new bulk share.
Check Advanced
On the right-hand side of the form, check Advanced to display the Advanced tab in your form.
Enable data obfuscation
Click the Advanced tab. Then, check Enable data obfuscation. This will allow you to start creating data obfuscation rules for your dynamic share or bulk share. If editing an existing dynamic share, click Update. If creating a bulk share, click Submit.
Create a new data obfuscation rule
Click back into your dynamic share or bulk share. Scroll to the bottom of the form and click the PSP Data Obfuscations tab. Then, click New.
Enter a name and order
Type any Name for your data obfuscation rule and enter a number for the Order, which will determine when your data obfuscation rule will run compared to other data obfuscation rules in the same share (in ascending order).
Choose a type
Choose a data obfuscation rule type from the following options:
| Type of Data Obfuscation Rule | Description |
|---|---|
| Field | Choose a field whose value you want to obfuscate. If this value appears in multiple spots throughout the record, you can optionally choose the Obfuscate value throughout record option. The Masking Value (special characters only) or Masking Statement (alphanumeric characters) you enter will replace your specified field's value in the record. If choosing the Hashed option, your specified field's value will be obfuscated via the hashing algorithm (SHA-1, SHA-256, or MD5) you select from the Hash Function dropdown. |
| Pattern | Specify a JavaScript regular expression pattern in the Pattern field to search for and replace in your share's outbound message. The Masking Value (special characters only) or Masking Statement (alphanumeric characters) you enter will replace your specified pattern's value in the record. If choosing the Hashed option, your specified pattern's value will be obfuscated via the hashing algorithm (SHA-1, SHA-256, or MD5) you select from the Hash Function dropdown. |
| Replacement | Specify search values that will be replaced by a masking value. To create a Replacement data obfuscation rule, first create a new data obfuscation rule with Type Replacement and click Submit. A related list of search value records will appear at the bottom of the form. Each search value will be replaced with the masking value if found in your share's outbound message. When choosing the Replacement type, you can upload a CSV file as a list of comma-separated search values by clicking Import replacement dictionary (.csv). This will take the user to a confirmation page to upload a file.
|
Save your data obfuscation rule settings
In the bottom left-hand corner of the data obfuscation form, click Submit to save your data obfuscation rule settings.
Data Obfuscation Dashboard
You can visit the Data Obfuscation Dashboard to easily view information about your data obfuscation rules. To access your Data Obfuscation Dashboard, navigate to Perspectium > Data Obfuscation Dashboard.
The top widget contains two tables containing information on each dynamic and bulk share with active data obfuscation rules. The first column shows the name of each share which will take users to the respective share when clicked on. The table specifies which table each share is targeting. The last three columns show each type of data obfuscation (Field, Pattern, or Replacement). A green checkmark indicates at least one data obfuscation rule of that type is active for that share, whereas a red X indicates no data obfuscation rule of that type is active. The dashboard also shows the total number of records obfuscated from each table as well as the total number of obfuscation rules on each table.
NOTE: If you delete any of the widgets on the dashboard page you will not be able to get them back unless you reinstall the ServiceNow core update set. Accidentally deleting the widget will not affect your Data Obfuscation rules.
