Full Visibility and Control for Applications and Databases

The SecureSphere Data Security Suite delivers a complete lifecycle for Web application and database security in a single platform. By securing transactions from the end user through the Web application to the database, the SecureSphere Data Security Suite offers complete data security and visibility. SecureSphere can identify the unique application users that performed database queries—even in multi-tier environments. This Universal User Tracking capability provides user accountability to database audit trails and compliance reports.

As the premier SecureSphere Suite it combines the power of the Web Application Firewall, the visibility of the Database Activity Monitoring and the vulnerability tests of the Discovery and Assessment Server. The Data Security Suite provides complete visibility into application data usage and more accurate protection against a large variety of sophisticated attacks.

Benefits

• Complete Application and Database Security Suite to secure databases and the applications that use them
• Accurately protects against sophisticated attacks such as SQL Injection, Cross Site Scripting and database protocol manipulation
• Tracks application users to database transactions, even for pooled connections
• Streamlines auditing and compliance with automated data collection and analysis and a powerful compliance reporting engine
• Scales to support large, distributed environments with centralized management

SecureSphere Data Security Suite Features

• Fully Integrated Data Security Suite – The Data Security Suite is the complete integrated package of the other SecureSphere product lines- Web Application Firewall, Discovery and Assessment Server, Database Activity Monitoring, and Database Firewall.
• Accurate Protection against Web application and Database Attacks – SecureSphere detects multiple types of security violations, including unexpected application or database requests, known (signature-based)attacks, privilege abuse, protocol violations, and session exploits.
• Complete Visibility – From the database to the application end user, the SecureSphere Data Security Suite can monitor and track the full transaction. SecureSphere audits all types of activities, including all types of SQL operations and local, privileged access by DBAs. Supporting heterogeneous database deployments, SecureSphere is the clear choice for data auditing, monitoring and forensics.
• User Accountability – The SecureSphere Data Security Suite makes individual users accountable even when user connections are pooled by an application server. Imperva’s innovative Universal User Tracking capability offers four different user tracking mechanisms to correctly identify end users regardless of how the users authenticate and access the database.
• Discovery and Assessment – SecureSphere offers server and sensitive data discovery, configuration assessment, and behavior assessment. SecureSphere enables organizations to identify and prioritize risks, mitigate vulnerabilities, and document compliance.
• Data Leak Prevention – SecureSphere detects and can optionally block sensitive data leaks, such as credit card and social security numbers, from Web applications and databases.
• Automated, Intuitive Management – Imperva’s unique Dynamic Profiling technology automatically learns the structure, elements, and expected usage of protected applications and databases.
• Enterprise-grade Centralized Management – Scaling to protect large, distributed data centers, the MX Management Server centralizes the configuration, monitoring and reporting of multiple appliances.
• Integrated Risk Management – Includes innovative Risk Dashboard to visualize and prioritize data security activities based on risk.

Click to enlarge

• Business Relevant Reporting – SecureSphere includes a powerful reporting framework with both pre-defined and fully-customizable reports that offers instant visibility for security and compliance requirements.

Data Security Suite Specifications