Imperva: Protecting the Data that Drives Business Blog|Login|中文Deutsche日本語
SharePoint Security

Monitor, Audit and Control Access for full SharePoint Security

SecureSphere for SharePoint DiagramClick to enlarge
SecureSphere for SharePoint helps organizations protect sensitive data stored within SharePoint. It addresses the unique SharePoint security requirements of the platform’s file, Web and database elements, ensuring that users with legitimate business needs can access data and others cannot. SecureSphere enables SharePoint security, SharePoint administration, and IT operations professionals to improve data security, meet compliance mandates and streamline SharePoint permissions management.

SecureSphere for SharePoint provides multi-layered SharePoint security that includes a Web Application Firewall to protect against Web-based attacks, user rights management and activity monitoring to safeguard content such as files, folders and lists, and a Database Firewall to prevent unauthorized access to the Microsoft SQL database at the core of SharePoint.

Key Capabilities
Security
Ensure access is based on business need-to-know
Document compliance, conduct forensic investigations and isolate changes
Enforce business rules
Determine how best to protect and manage data
Protect against Web-based attacks
Prevent tampering with the Microsoft SQL database
Simplify the process of SharePoint security
IT Operations
Save time managing SharePoint permissions and performing user rights reviews
Decide how best to manage data
Find lost, missing or deleted data
Free valuable storage space

To learn more, click on the Capabilities tab.

Efficiently Achieve Business Need-To-Know Access

SecureSphere aggregates and consolidates user rights across SharePoint sites to provide visibility into effective SharePoint permissions. With SecureSphere for SharePoint, organizations can efficiently conduct rights reviews, eliminate excess rights, and identify dormant users, all of which help ensure access is based on business need-to-know.

Document Compliance and Investigate Access Activity

SecureSphere provides continuous monitoring and detailed auditing of all data access activity so organizations have a complete audit trail showing the “Who, What, When, Where, and How” of each data access. This enables security, compliance and SharePoint administrative staff to understand exactly who accessed, moved, changed or deleted data.

Enforce Business Rules in Real-Time

SecureSphere for SharePoint delivers a flexible policy framework that allows business to respond immediately when data access activity deviates from corporate policy. Alerts are generated within the SecureSphere console and can also drive external actions such as sending email or blocking access to data.

Determine How Best to Protect and Manage Data

SecureSphere helps identify data owners by providing visibility into the top users of SharePoint files, folders and lists. Owners understand the relevance of their data to the business and can therefore provide critical input on how data should be protected and managed.

Protect Against Web-Based Attacks

SharePoint is a Web-based system, subject to online attacks such as SQL injection and cross-site scripting. SecureSphere for SharePoint incorporates market-leading SecureSphere Web Application Firewall, which protects SharePoint from current and future Web security threats.

Prevent Tampering with SharePoint's Database

SharePoint stores all data – files, lists, and application data – within a Microsoft SQL database. SecureSphere for SharePoint incorporates market-leading SecureSphere Database Firewall to monitor all database access and ensure unauthorized access is prevented.

Identify Unused Data

SecureSphere helps alleviate the constant growth of SharePoint data by identifying data that is stored in SharePoint, but which no one is using. This allows organizations to archive or delete the data, which reduces management overhead and frees valuable storage space.

Simplify the Process of SharePoint Security

SecureSphere for SharePoint includes pre-packaged security policies based on the expertise of security researchers in the Imperva Application Defense Center (ADC). ADC Insights for SharePoint helps organizations quickly secure their SharePoint deployments.

SecureSphere for SharePoint


Specification Description
SharePoint Versions Supported
  • Microsoft SharePoint Server 2010
  • Microsoft Office SharePoint Server ("MOSS") 2007
Directory Services Supported
  • Microsoft Active Directory (AD) users and groups
User Rights Management
  • Audit user access rights to files and lists via SharePoint permissions
  • Validate excessive rights on sensitive data
  • Identify dormant accounts
  • Identify files accessible by global groups
  • Track changes to user rights
  • Revoke rights and group membership
  • Recommend data owners
SharePoint Activity Audit
  • User name
  • Organizational department
  • File or list name
  • Folder path
  • Access operations
  • Source & Destination IP
  • Data classification
  • Data owner
Data Classification
Tamper-Proof Audit Trail
  • Audit trail stored in a tamper-proof repository
  • Optional encryption or digitally signing of audit data
  • Role based access controls to view audit data (read-only)
  • Real-time visibility of audit data
Deployment Modes
  • Web traffic: Transparent Bridge (Layer 2), Reverse Proxy and Transparent Proxy (Layer 7), Non-inline sniffer
  • SharePoint content: lightweight agents
  • SharePoint database: lightweight agents
Management
  • Web User Interface (HTTP/HTTPS)
  • Command Line Interface (SSH/Console)
Administration
  • MX Server for centralized management
  • Integrated management option
Events and Reporting
  • SNMP
  • Syslog
  • Email
  • Incident management ticketing integration
  • Custom followed action
  • SecureSphere task workflow
  • Integrated graphical reporting
  • Real-time dashboard