Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

New Database Security Gateways provide row-level auditing and alerts.

Imperva : 12 March, 2008  (New Product)
Imperva's SecureSphere Database Security Gateways now automatically identifies and alerts organizations to suspicious changes to sensitive database values right down to the row level.
Unlike trigger-based approaches that require intrusive modifications to the database, SecureSphere uses Redo logs to transparently monitor even the most fine-grained changes and pinpoint the users who executed them.

Tracking the most minute changes to database values is imperative for security, compliance, and fraud prevention purposes. The Sarbanes-Oxley (SOX) Act specifically mandates that publicly-traded companies control changes to financial information. Unauthorised changes to databases can lead to long and complex forensic investigations to uncover what data changed and restore the original values. For example, unauthorised changes to financial controls might expose an organization to undue risk due to the actions of rogue employees.

With its Track Value Changes capability, SecureSphere monitors and audits the values of a specific record or a subset of table rows both before and after changes are made. Combined with this granular visibility, SecureSphere allows organizations to set independent controls that generate alerts when changes made to data values violate pre-established policies or thresholds. For example, SecureSphere can recognize potentially fraudulent activity such as unusually large changes in credit card limits, excessive discounts in sales invoices, or dramatic decreases in product inventory levels.

"With Track Value Changes, SecureSphere makes it easy to implement controls that can detect fraud and enforce security policies as well as regulatory requirements," said Amichai Shulman, CTO of Imperva. "Unlike conventional approaches for tracking value changes, SecureSphere does not force organizations to write invasive triggers, and can alert based on threshold or other policy violations in addition to recording before and after values."

Maintaining Imperva's goal of delivering simple, transparent security solutions, the SecureSphere Track Value Changes capability requires no changes to existing databases, no invasive database triggers, and no disruption to application processes. Alternative approaches to monitoring before and after values entail intrusive database changes. SecureSphere stores tracked changes in a secure, tamper-resistant repository, ensuring separation of duties.

The Track Value Changes module is available immediately with SecureSphere version 6.0. The module is provided free of charge to all SecureSphere customers with current maintenance agreements.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo