Home:ALL Converter>Personally Identifiable Information (PII), Traces, and MessageLogging

Personally Identifiable Information (PII), Traces, and MessageLogging

Ask Time:2012-09-23T05:03:50         Author:Brent Arias

Json Formatter

MSDN talks about how credit card information could accidentally be logged during traces. But that same article explains that "known" Personally Identifiable Information is not logged.

What I'd like to know is if there is a way to 'flag' members of a DataContract as PII, to take advantage of the .net built-on capability of filtering out PII from traces and logs? I'm thinking the answer is "no," because the user names and passwords the article references I suspect are part of authentication steps, rather than part of data contracts that follow authentication.

Even so, is there any kind of built-in .net attribute I can annotate a Data Contract or serializeable class members with, which means "hey, this is a security sensitive attribute, beware!"

Author:Brent Arias,eproduced under the CC 4.0 BY-SA copyright license with a link to the original source and this disclaimer.
Link to original article:https://stackoverflow.com/questions/12547687/personally-identifiable-information-pii-traces-and-messagelogging