Skip to main content

KBA1532 Using Segment Mapping Algorithm to Mask Credit Card Values




1) Validate original data

Check for duplicate data in the columns to be masked, unless uniqueness is not a requirement. Creating a primary or unique index on the column to be masked would be 

one way of enforcing uniqueness.

2) Configure the Environment

Create the application, environment, Connector, Rule Set, Inventory to be used for this masking job, if not already configured. Refer to the Masking Engine User Guide for  further details

3) Define the Segment Mapping algorithm

Our example is masking a 16-digit credit card number.  In this example we specify that we require :

- the first 7 digits  and the last digit (16th digit)  to be preserved (remain unmasked)

- there are no characters to be ignored

- uniqueness in the masked values

- Example:

Original                     Masked

5500533005630077 5500533005560437


i) From the Masking Menu click on the Settings tab and click on Segment Mapping Algorithm 

  To fulfill the requirement in this example, create the algorithm with two segments and do not specify any Min/Max/Range values

   Specify 2 segments :







Often when taking input (from customers in a web form, for example) you can receive unexpected characters in your data.  For example, with credit card numbers, people will often add spaces, dashes, or dots between sets of numbers.  If you are not certain of the data in the column, you can use the Ignore Characters field (shown above) to enter a comma separated list of characters that should be skipped over untouched.  For example, if the unmasked data value was something like "5500-5330-0563-0077" with an ignore characters list of "-, ,." (the hyphen character, the space character, and the period character) and the other definitions shown in this article, the result might look something like "5500-5330-0556-0437"  This preserves the original form with the dashes, the initial 7 digits, the last digit, and then masks the rest.

Since the list is comma separated, that means that you cannot add a comma to the list of ignore characters.  That is why there is an Ignore comma checkbox should you need to ignore the comma character.

4) Create and run the masking job

- Example of the masking job: