Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Compete to become Power BI Data Viz World Champion! First round ends August 18th. Get started.

Reply
Anonymous
Not applicable

Mask data with RLS and without RLS

‎04-11-2023 09:22 PM

Hi everyone,

 

Got this interesting request for masking data under Family Educational Rights and Privacy Act (FERPA). Below are the parameters of the request from my colleague. My initial thoughts are in Blue. Can you let me know if I am correct in my thinking?

 

Here is the fake summarized data set. Any raw value under 10 would get masked under the agency's FERPA rule.   

 

I believe the gist of the request is "can we mask data under FERPA and still have the data roll up to an accurate count?"

 

Assuming multiple tables do not need to be created because possible duplicates were assigned to campus of first reporting:

  1. Can Power BI ‘mask’ data through the application, or must a masked table be used? I only know of row level security.
    1. Row level security results in:
  1.       Lower query performance - Not that I am aware.
  2.       More complex data models - I don't believe RLS complicates the data model. 
  •       Limited Power BI features enabled
    1. With RLS, we can have:
  1.       Fewer duplication of content, i.e., one table per multiple types of users - correct
  2.       Privilege users - correct
  •       One workspace for dashboard development - correct
  1. If we go without RLS, what is best way to code null values versus masked values in the data source? - I've seen index columns used to mask sensitive data. Is there another way?
    1. We would want to distinguish true null versus masked; however, we will need to consult with FERPA officer as in our Tri-Agency data sharing agreement, TEA forced other two agencies to mask zeros as well.
    2. This is still good question though.
  2. If we go without RLS, what is best way to roll up data with masked and null values to get accurate counts?
    1. Example, sum of campus data for district data is inaccurate if Null/masked set to other value.
    2. In past, I have used “OTHER” category that sums counts below 5.  With complimentary masking, sometimes, OTHER cannot be shown as total allows you to figure out missing value.
  1.       My current solution is to create these other “MASKED AGGREGATE” rows with a “STATE” code that then gets included with roll up.  In this example, it would be an additional non-existent CAMPUS code that gets included with TOTAL when all campuses are aggregated.  - this is the part that I would need the most crowdsourcing.
Labels:
Message 1 of 1
676 Views
0
0 REPLIES 0

Helpful resources

Announcements
August Power BI Update Carousel

Power BI Monthly Update - August 2025

Check out the August 2025 Power BI update to learn about new features.

August 2025 community update carousel

Fabric Community Update - August 2025

Find out what's new and trending in the Fabric community.

View All