Generate anonymised database with MasKING - 2023.09.21 Euruko Unconference Talk

Generate anonymised database
with MasKING
Chikahiro Tokoro Euruko 2023 at Vilnius: Unconference Talk

View Slide

Why do we want anonymised
database?

View Slide

One day, during the release….

View Slide

One day, during the release….
the main table was locked
during database migration😱

View Slide

staging
(QA)
production
local
(development)
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
0.2 sec 3 sec 1 hour
the postmortem: check the delivery process

View Slide

If with similar dataset with production...
staging
(QA)
production
local
(development)
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
1 hour

View Slide

But, we should not use
the production dataset
Let’s use
anonymised dataset!

View Slide

Use cases:
● simulate database migration
local
(development)
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
—-
1 hour

View Slide

Use cases:
● SQL performance optimization
accurate execution plan
# Time: 2023-09-13T15:45:12.987654Z
# User@Host: web_app[web_db] @ 10.0.0.2
# Query_time: 25.987654 Lock_time: 2.345678
Rows_sent: 50 Rows_examined: 5000
SET timestamp=1234567890;
SELECT
users.id,
users.username,
COUNT(posts.id) AS post_count,
SUM(posts.likes) AS total_likes
FROM users
LEFT JOIN posts ON users.id = posts.user_id
WHERE users.created_at >= '2023-01-01'
GROUP BY users.id
HAVING post_count >= 5
ORDER BY total_likes DESC
LIMIT 10;
slow query log

View Slide

Use cases:
● make ease to reproduce and ﬁx bugs
unexpected
values
missing
related record
duplicated
records

View Slide

Use cases:
● better feature preview
● stress test
● analyse / Business Intelligence data source
And… your idea here!

View Slide

https://www.snaplet.dev/
Founded on 2020

View Slide

How to implement anonymisation process?
1. copy database and “UPDATE” records
production
production
(copy)
UPDATE users
SET name = 'User1',
email = '[email protected]',
....
(most common way)

View Slide

2. setup replica and database trigger
production
production
(replica)
CREATE TRIGGER after_user_insert
AFTER INSERT ON users FOR EACH ROW
BEGIN
UPDATE users
SET username = CONCAT('User', NEW.user_id)
WHERE user_id = NEW.user_id;
...

View Slide

3. proxy connection and interrupt SQL on the ﬂy
production
INSERT INTO users (username, email, ...)
VALUES ('JohnDoe', '[email protected]'
, ...);
production
(copy)
Connection Proxy
VALUES ('JohnDoe', '[email protected]'
, ...);
VALUES ('User1', '[email protected]
', ...);

View Slide

4. read database and create anonymised database
production
dump
anonymised
dump
production
(anonymised)
database
client
(second common way)

View Slide

4.
data leak
risk
Medium
Low
Low
eﬀort
Medium
High
Medium
Low
conﬁg
High
Medium
Low
Low
time gap
realtime
realtime
Medium
Long
performance
regression
No
Yes
No
No
2. DB trigger
3. DB proxy
read &
create
1. copy &
UPDATE High

View Slide

https://github.com/kibitan/masking

View Slide

Usage
[email protected]
[email protected]
[email protected]
…
users:
email: anonymized+%{n}@example.com

View Slide

Usage

$ mysql --complete-insert DB_NAME | masking | mysql ANONYMIZED_DB_NAME

View Slide

Generate anonymised database with MasKING - Demo - YouTube
Demo

View Slide

Demo
masking.yml

View Slide

Demo

View Slide

Design Concepts

View Slide

Design Concept: KISS ~ Keep it simple, stupid! ~
“Do one thing, and do it well”
Unix philosophy
❌ Database connection
❌ File handling
✅ Standard input/output

View Slide

Design Concept: No external dependency
No gems dependencies, use only standard libraries

View Slide

Design Concept: Quality

View Slide

Design Concept: Quality - metrics

View Slide

Design Concept: Quality - Acceptance test
setup
test
assertion
docker-compose.yml
acceptance/run_test.sh

View Slide

Design Concept: Quality - Acceptance test on CI

View Slide

How to implement?

View Slide

users:
name: Anonymized Name
email: anonymized+%{n}@example.com
masking.yml
dump.sql anonymised_dump.sql
masking

View Slide

Domains: uncertainties
Mapping
conﬁguration
?
Parse/Rebuild
SQL

View Slide

Domains: uncertainties
Mapping
conﬁguration
Parse/Rebuild
SQL
Introduction to Test-Driven Development (TDD) with Classic TDD Example | Khalil Stemmler

View Slide

① Outside-in
Mapping
conﬁguration
stdin
① Outside-in
② Inside-out
Parse/Rebuild
SQL
③ Inside-out
Domains: ﬁnding architecture/models
Output
Line
Input
Line
stdout
Processor
⑤ Outside-in ⑤ Outside-in
④ Inside-out

View Slide

How to parse dump?

View Slide

sample_dump.sql
setup database
define table schema
insert data

View Slide

https://dev.mysql.com/doc/refman/8.0/en/mysqldump.html

View Slide

setup database
define table schema
insert data
sample_dump_with_complete-insert_option.sql

View Slide

How to parse SQL?

View Slide

https://github.com/kibitan/masking/blob/main/lib/masking/insert_statement.rb
dynamically make
regular expression object
?
?
?
VALUE_REGEXP x 3

View Slide

$ mysqldump --complete-insert production_db | masking > anonymised_dump.sql
/Users/kibitan/repo/github.com/kibitan/masking/lib/masking/insert_statement.rb:15:in `block in initialize':
Masking::Error::InsertStatementParseError (Masking::Error::InsertStatementParseError)
from :90:in `tap'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking/insert_statement.rb:14:in ìnitialize'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking/data_mask_processor.rb:12:in `new'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking/data_mask_processor.rb:12:in ìnitialize'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking/sql_dump_line.rb:13:in `new'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking/sql_dump_line.rb:13:in `mask'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking.rb:23:in `block in run'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking.rb:22:in èach_line'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking.rb:22:in `run'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking.rb:10:in `run'
from /Users/kibitan/repo/github.com/kibitan/masking/lib/masking/cli.rb:17:in `run'
from exe/masking:10:in `'
let’s try with production data!

View Slide

the journey to ready for production data
https://github.com/kibitan/masking/commit/792e73b7d316fac1fa6694d74b6adcfee19dccc4

View Slide

https://github.com/kibitan/masking/commit/8ca7fdad2c52d3af5e6c56faadc08e8768500108

View Slide

https://github.com/kibitan/masking/commit/04515ec0f9c8a5457c10b8224b488b90c90c6aa2

View Slide

https://github.com/kibitan/masking/pull/3

View Slide

$ mysqldump --complete-insert production_db | masking > anonymised_dump.sql
$ mysql anonymised_db < anonymised_dump.sql
ERROR 1064 (42000) at line 547659: You have an error in your SQL
syntax; check the manual that corresponds to your MySQL server
version for the right syntax to use near 'smelati’),' at line 547659

View Slide

(‘ab’,1),(’cd’,2),(’ef’,3);

View Slide

(‘ab’,1),(’cd’,2),(’ef’,3);
‘ab’,1,’cd’,2,’ef’,3;
same with
CSV!!!

View Slide

https://www.clear-code.com/blog/2018/12/25.html

View Slide

2.even? 3.even?
4.even?
concat with next
4.even?

View Slide

https://github.com/kibitan/masking/pull/5

View Slide

View Slide

what’s next?
● support random/fake data
● parse table schema
● performance optimization
○ type validation for conﬁg
○ working without “--complete-insert” option

View Slide

what’s next?: for PostgreSQL
https://github.com/kibitan/pgmasking

View Slide

Thank you!
Any feedback is welcome!
https://github.com/kibitan/masking
Chikahiro
x/twitter: @chikahirotokoro
https://chikahirotokoro.com

View Slide

Generate anonymised database with MasKING - 2023.09.21 Euruko Unconference Talk

Generate anonymised database with MasKING - 2023.09.21 Euruko Unconference Talk

Chikahiro Tokoro

More Decks by Chikahiro Tokoro

Other Decks in Programming

Featured

Transcript