Log and Error Redaction in CockroachDB v20.2
CockroachDB v20.2 introduces automatic redaction of users' sensitive data from log files, ensuring that Cockroach Labs never receives it. This feature is part of the company's commitment to maintaining user trust by not viewing their most sensitive information (e.g., healthcare and finance data). The new redactable string data type helps separate sensitive and non-sensitive data in error messages and log files, allowing more useful information to be shared while preventing any sensitive data from leaking out. This feature is a step towards improving the sharing of data between CockroachDB users and Cockroach Labs, with future enhancements aimed at distinguishing between "operational" and "application" data in log files and error payloads.
Company
Cockroach Labs
Date published
Jan. 18, 2021
Author(s)
Raphael 'kena' Poss
Word count
3319
Language
English
Hacker News points
2