DataSunrise Firewall for Hive Database Security

Hive security tools by DataSunrise protect against internal and external threats. Customizable features enable to choose what kind of SQL queries must be blocked. There is an opportunity to block queries from certain hosts and applications or provide access to group of users only to certain element of database. DataSunrise prevents unauthorized operations of company members and malicious activities coming from outside, including SQL injections.

Tech Info

Apache Hive is an open-source data warehouse infrastructure for summarization, query and analysis of large datasets stored in Hadoop. Hive security solution by DataSunrise provides real-time protection against hacker attacks and insider threats for Hive databases.

proxy-01

Hive firewall by DataSunrise allows administrators to define security policies that monitor and control how users access database objects. Rules provide a range of parameters according to which queries can be blocked or modified:

  • name, instance and type of the target database;
  • signs of containing SQL injection (OR, UNION statements, constant expression, double queries, comments, keywords in comments);
  • certain database elements (tables, schemas, stored procedures, columns);
  • certain client application or IP address.

Proxy mode doesn’t cripple database performance and has a minimal impact on application layer. As an intermediary between server and users Hive firewall by DataSunrise captures all SQL commands, compares them with security rule attributes and blocks or modifies them in case of a policy violation. There is an optional feature to alert about certain rule that has been triggered by email. Notifications allow administrators timely respond to upcoming threats and prevent malicious actions of privileged users. Detailed logs containing information about queries and results of their execution helps to detect malicious users and database and application vulnerabilities.

Learning mode helps at firewall deployment stage. It analyzes user operations and generates a white list of typical SQL statements that are assumed to be safe. It simplifies further customization of a firewall and prevents false triggering.

Hive security solution by DataSunrise effectively protects Apache Hive database from data loss, theft and attacks.

 

Related Articles