Market Leading Auditing and Protection for Databases

The award-winning SecureSphere Database Firewall monitors and proactively protects databases from internal abuse, database attacks, and unauthorized activity. The Database Firewall delivers a powerful platform to monitor, audit, and protect Oracle, MS-SQL, IBM DB2, Sybase, Informix and Teradata databases without impacting database performance and without requiring application or network changes. It can be deployed in front of database servers to directly protect them from attacks and data leakage. SecureSphere appliances and agents audit SQL transactions for forensics, prevent database leaks, and ensure data integrity by establishing an independent audit trail of user activity.

The SecureSphere Database Firewall is the only solution available that can directly protect databases from potential attacks. With pre-built security policies, audit rules, and reports for PCI, SOX, HIPAA, and enterprise applications, SecureSphere customers can protect their most valuable database resources.

Benefits

• Accurately monitors and actively protects mission-critical database servers
• Offers complete visibility and independent audit trail of database activity
• Automates data collection, analysis, policy enforcement, and reports
• Demonstrates security and compliance with best-in-class monitoring and reporting
• Provides broadest options for network, agent, and agentless based database monitoring
• Unifies management and monitoring of multiple gateways through centralized MX Management Server

SecureSphere Database Firewall Features

• Total Database Protection and Accurate Policy Enforcement – The SecureSphere Database Firewall blocks unauthorized activities and sophisticated attacks before they reach the database.
• Virtual Patching solution – Protect mission critical databases with virtual patching when vendor-supplied patches cannot be deployed. Virtual patching does not require any changes to the database or applications.
• Automated Data Discovery, Classification and Vulnerability Assessment – SecureSphere discovers database servers and locates and classifies sensitive data; database assessments analyze databases for hundreds of vulnerabilities and configuration flaws.
• Detailed and Granular Auditing for Heterogeneous Environments – unified auditing provides the: “who, what, when, where and how” details for all major database platforms.
• Data Leak Prevention – SecureSphere inspects outbound traffic to identify and optionally audit or block leaks of sensitive data such as cardholder data and social security numbers.
• Low impact, High performance, Zero latency – By monitoring almost all SQL traffic at the network level and restricting Imperva’s light-weight agent to local DBA activity, SecureSphere offers unparalleled performance with no impact on existing applications or infrastructure.
• Enterprise-grade Centralized Management – Scaling to protect large, distributed data centers, the MX Management Server centralizes the configuration, monitoring and reporting of multiple appliances.
• Powerful Reporting framework – SecureSphere includes a flexible, graphical reporting engine that includes both pre-defined and fully-customizable reports. SecureSphere can also integrate with third party products such as SIEM and ticketing solutions.
• Risk Management – Includes a powerful Risk Explorer to quickly identify and prioritize critical sensitive data and physical databases to protect.
• Automated Compliance Workflow – Compliance reports may be scheduled and distributed across the organization; SecureSphere can record when key stakeholders review reports or define followed tasks.

Click to enlarge

Database Firewall Specifications