The LINCLOG security feature provides masking or encryption of user selected attribute data appearing in the LINCLOG file. This feature is used for the security of critical data, such as PIN numbers, bank account details, credit card numbers, and passwords.
You can use either one of the following ways to mask attribute data:
For each attribute in the model, enable the configuration properties EnableMaskDefinition and EnableMask to specify the mask string of characters (* by default).
Use the LogLibSecurity utility on the MCP server and enter the attributes to be masked.
Data that is masked in the log file cannot be retrieved. The LOGLIBRARY replaces the attribute data written in the LINCLOG file with the specified mask definition. Subsequent access of the log file using the LOG or DLOG utilities (or via DUMPALL) shows only the mask character for all occurrences of the specified attributes.
Alternatively, data can be encrypted and decrypted with a user library, LogLib_Support. If the user library exists, LOGLIBRARY encrypts the data before writing it to the LINCLOG file by executing the ENCRYPT_DATA routine. Likewise, Loglibrary decrypts the data whilst reading from the LINCLOG file by executing the DECRYPT_DATA routine for the specified fields. You can refer to the sample ALGOL library template to code the encryption or decryption algorithm.