Individual Search

Objective

The Mukta Individual Search service is designed to retrieve and handle individual-related data securely. The service masks personally identifiable information (PII) based on configurable patterns and enforces role-based access control to ensure sensitive data is visible only to authorized users.

PII data - Name, Identity number, Father/ husband name, Relationship, Address, Date of birth, Gender, Mobile Number, Social category, Email ID, Photo.

The response would be based on the config set in MDMS-V2 which masks the above fields in appropriate patterns.

Masking Methodology

1. Masking Patterns:

   1. Configured in the DataSecurity module.

   2. Patterns define the masking logic for attributes, e.g.,

      1. 001: .\*(?=.{4}) masks all but the last 4 characters.

      2. 009: (?<=.{4}).(?=.{2}) masks characters except the first 4 and last 2.

2. Role-Based Security Policies:

   1. Defined in the MaskingUIConfig module.

   2. Specifies the visibility of attributes based on user roles.

   3. Attributes can have PLAIN or MASKED visibility.

3. Implementation:

   1. Attributes are extracted from the response using JSON paths.

   2. If a user's role does not permit plain text access, the attribute is masked based on the configured pattern.

Security Policy Example

Curl: