Protect data from threats and unauthorized access by enforcing data security methods

- Pentaho

Introduction :

The amount of information stored in electronic media has increased significantly. As a business owner, it is absolutely essential that you ensure that no one who is unauthorized has access to your data. Data security is to ensure the safety and protection of business data.

What is Data Security?

Data Security is the process of keeping data secure and protected from unauthorized access or data breach. The main focus of data security is to make sure that data is safe and away from any destructive forces such as corruption, leakage of confidential information and violation of privacy.

Data Security Methods:

The following are data security methods used to prevent breaches, reduce risk and sustain protections.

  • Data Masking

  • Data Encryption

  • Data Tokenization

Data Masking:

Data masking is a method of creating a structurally similar but inauthentic version of an organization’s data. The purpose is to protect the actual data while having a functional substitute for occasions when the real data is not required.

The below table will explain masking functionality,


Data Encryption:

Data are encoded and can only be accessed or decrypted by a user with the correct encryption key. Encrypted data is commonly referred to as ciphertext, while unencrypted data is called plaintext.

Two main types of data encryption exist – symmetric encryption and asymmetric encryption, also known as public-key encryption.

The symmetric key encryption algorithm uses the same keys for both encryption and decryption of ciphertext.


Asymmetric key encryption, also known as public-key encryption, uses two different but mathematically linked keys, one public and one private. The public key can be shared with everyone, whereas the private key must be kept secret.


Data Tokenization:

Tokenization is the process of turning a meaningful piece of data, such as a credit card number/pan number, into a random number called a token that has no meaningful value if breached. Tokens serve as a reference to the original data, but cannot be used to guess those values. That’s because, unlike encryption, tokenization does not use a mathematical process to transform sensitive information into the token. There is no key or algorithm, that can be used to derive the original data for a token. Instead, tokenization uses a database, called a token vault, which stores the relationship between the sensitive value and the token.


Data Security in Pentaho:

With the Pentaho platform’s flexible, secure component design, it is easy to secure data for different users. You can balance security and convenience, reduce the risk of misuse data, and still make sure all users can easily get the data they need.

The platform makes it easy to mask/ encrypt/ tokenize the information to which users can view the information.

Masking In Pentaho:


Encryption In Pentaho:


Tokenization in Pentaho: