Data masking security of the Barracuda Web Application Firewall obscures sensitive data elements before logging them. Configured parameters like social security numbers, credit card information, or other proprietary data in the URL parameters of a request can be protected from unauthorized exposure in the logs. Data masking is configured for an application using parameter names to specify sensitive data. Logged data appears in BASIC > Access Logs, with the sensitive data overwritten by 'X'es.
To configure Data Masking, perform the following steps:
- Go to the WEBSITES > Advanced Security page, Mask Sensitive Data In Logs section.
- Click Edit next to the service for which masking is necessary.
In the Mask Sensitive Data window, enter the names of sensitive parameters. You can provide multiple parameter names separated by commas with no spaces between. Example: cardId,securityNumber,password
- Click Save.