Vertica Database Firewall by DataSunrise
The Vertica firewall solution by DataSunrise guards the corporate system against database-specific attacks and insider vulnerabilities. All database queries are obliged to go through the Vertica firewall where they are analyzed according to parameters of rules defined by administrators. Only the queries that don’t violate security policies are allowed to be executed, the others are blocked. Vertica firewall notifies of suspicious activity and helps to detect SQL injections and other types of cyber attacks.
Vertica firewall tool by DataSunrise is a next-generation database security platform with a diverse range of security features for Vertica database. After deployment the Vertica firewall is set at self-learning mode. Using sophisticated algorithms it monitors database traffic and generates a list of common SQL commands. This list is used to simplify further firewall customization. Vertica firewall by DataSunrise is deployed as a proxy between a server and its users, so it fetches all incoming commands and allows to pass through to database only the ones that exist in the white list and don’t violate any other parameters of pre-defined policies. Security rules are defined by administrators and can be adjusted to various corporate needs. Customizable settings allow filtering according to various parameters:
- source address (filtering queries coming from certain hosts, IP addresses or client applications);
- query targets (certain database elements: tables, columns, stored, procedures);
- certain SQL statements;
- whether queries contain signs of SQL injection (UNION and OR statements, double queries, keyword in comments, constant expression).