Answer-first summary for fast verification
Answer: Establish a view over the original data that implements conditional logic to mask PII fields, providing access to this view rather than the underlying table.
The optimal approach to dynamically mask PII for unauthorized users at query time in a lakehouse architecture is to create a view over the source data that applies conditional logic to mask PII fields, thereby granting access to this view instead of the base table. This method offers flexibility and granularity in controlling data access, allowing for specific conditions based on user roles or permissions to determine PII masking. While row-level security and encrypted columns provide certain levels of data protection, they lack the granularity or dynamic capability required for complex masking scenarios. Delta Lake's column-level security, though useful, may not suffice for all masking needs. The view-based approach ensures that only authorized users access unmasked data, effectively protecting PII in a lakehouse setup.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
In designing a data model that includes personally identifiable information (PII) within a lakehouse architecture, what is the most effective method to dynamically mask PII for unauthorized users at query time?
A
Utilize Delta Lake's column-level security features to automatically mask PII for specific roles.
B
Store all PII in encrypted columns and decrypt them in the application layer according to user roles.
C
Apply row-level security policies to dynamically adjust PII visibility based on the querying user's permissions.
D
Establish a view over the original data that implements conditional logic to mask PII fields, providing access to this view rather than the underlying table.
No comments yet.