Database Security, Data Masking and Data Audit by DataSunrise
DataSunrise Database Security solves real-time database protection needs and data security compliance requirements. DataSunrise software includes an application firewall and specially designed to perform database activity monitoring and auditing, detection and blocking of SQL injections and unauthorized access attempts, obfuscation of sensitive data in database to prevent the accidental data leaks.
DataSunrise can be deployed easily in the cloud or on-premises.
DataSunrise Database Security supports all major vendors of databases and data warehouses. DataSunrise runs on all popular operating systems (Windows, Linux, UNIX) and features a user-friendly, comprehensive user interface.
DataSunrise is integrated with third-party SIEM systems such as Splunk, HP ArcSight, IBM QRadar, McAfee or other security solutions.
DataSunrise Database Security protects your data and databases both from external and internal threats while performing database audit, activity and traffic monitoring in real-time with high performance.
DataSunrise Database Security is actively available on the spot to protect data in Oracle, DB2, Teradata, MySQL, MSSQL, PostgreSQL, MariaDB, Greenplum, Amazon Redshift, Amazon Aurora and Netezza databases. Due to its cross-platform capabilities, DataSunrise database firewall is compatible with databases running on most popular platforms such as Linux, Unix(AIX, Sun Solaris, HP UX, etc.) and Windows. The wide heterogeneous support and unified security control is especially important when enterprises and organizations run different database and operating system platforms in their environments, both on premises and in cloud.
DataSunrise includes highly efficient Data-Centric security governance policies and controls. The database firewall enables its user to customize the rule set easily to adapt it to specific application requirements. Moreover, DataSunrise can configure itself automatically due to integrated self-learning algorithms. During learning period DataSunrise utilizes its Learning Mode functionality to research database users behavior and create a “White List” of typical SQL statements.
The “White List” consisting of SQL statements that comply with the firewall’s data security policy.
The “Black List” of SQL statements that are defined as harmful and should be blocked by the firewall when detected.
Safety rules system (includes Database Audit, Data Security and Data Masking rules). It is used to control the firewall behavior based on admin-defined parameters such as database client’s IP address, application, user attributes, SQL statements category and database objects.
DataSunrise gives its user the possibility of controlling sensitive data access due to its data masking capability. DataSunrise prevents sensitive data misuse by letting unauthorized users to see the obfuscated or fake (yet realistic-looking) data instead of the actual data. Depending on security policies set by the Database Security or Firewall administrators, DataSunrise will mask an entire database or just separate database elements such as columns.
SQL injection attacks prevention
DataSunrise Database Security has built-in advanced algorithms to detect suspicious SQL statements and SQL injections.
DataSunrise performs continuous database traffic analysis by inspecting the code of each incoming SQL query. In cases when the query contains any “prohibited” statements from the “Black list”, DataSunrise blocks it immediately and notifies the data security administrators via email.