DataSunrise Database Firewall for Percona Server for MySQL
DataSunrise database firewall protects your database on Percona Server for MySQL against various security threats. Our firewall filters the network traffic according to policies defined by administrators.
At the early stages of deployment DataSunrise functions in a self-learning mode. It examines incoming traffic and creates a whitelist of approved SQL commands typical for certain environment. Further on, only queries that match the whitelist are allowed to pass through to the database. Firewall blocks all the other commands and notifies the administrators about suspicious activity.
Detailed information about approved/blocked queries and results of their execution is logged for further analysis. Privileged users can pose a threat as well, that’s why configuration or rule changes are also protocoled. There is an opportunity to prevent account sharing and to block queries containing defined SQL statements or coming from certain applications, hosts. Access can be restricted to defined elements of the database (tables, columns, stored procedures, schemas).
DataSunrise firewall provides assistance in complying with privacy and security mandates (SOX, PCI-DSS, HIPAA, etc.) established by government and regulatory agencies.
The firewall detects and blocks attempts of malicious code execution exploiting different vulnerabilities including SQL injections (Boolean and Union exploitation, time delay exploitation, out-of-band exploitation, automated exploitation).
DataSunrise database firewall compatible with Percona Server runs transparently, no changes are required to database applications. All features of our product are operated via a user-friendly graphical interface, customizable settings of which allow you to automate security processes intended to protect Percona Server for MySQL databases against external attacks and inside vulnerabilities.