Example Cipher use case(示例:Cipher 使用场景)¶
One common use case for Cipher is to encrypt sensitive data by default, but allow operational users with legitimate purposes to selectively decrypt specific fields when they need it with an audit trail of actions.
In the example diagram below, sensitive data lands in a Foundry dataset with a security Marking applied. The steps outline how to use Cipher to obfuscate data before sharing, and enabling only targeted decryptions for operational users.

Steps to reproduce¶
- Create a Cipher Channel in your landing Project.
- Issue an Admin License and grant access to it to a relevant admin user.
- Obfuscate sensitive columns via Transforms and unmark the minimized dataset.
- Reference the minimized dataset in the Project to which operational users have access.
- Issue a decrypt Operational User License and move it to the Project for operational users.
- Set up your Ontology and enable rendering of encrypted values.
中文翻译¶
示例:Cipher 使用场景¶
Cipher 的一个常见使用场景是默认加密敏感数据,但允许具有合法目的的操作型用户(operational users)在需要时选择性解密特定字段,并保留完整的操作审计轨迹。
在下方示例图中,敏感数据进入已应用安全标记的 Foundry 数据集。图中步骤概述了如何使用 Cipher 在共享前混淆数据,并仅允许操作型用户进行定向解密。

复现步骤¶
- 在您的着陆项目(landing Project)中创建一个 Cipher 通道(Cipher Channel)。
- 颁发管理员许可证(Admin License),并授予相关管理员用户访问权限。
- 通过转换(Transforms)混淆敏感列,并取消标记最小化后的数据集。
- 在操作型用户有权访问的项目中引用该最小化数据集。
- 颁发解密操作型用户许可证(Operational User License),并将其移至操作型用户的项目中。
- 设置您的本体(Ontology),并启用加密值的渲染功能。