DataSunrise Security for Amazon Aurora
24/7 Amazon Aurora security by DataSunrise. SQL injections protection, user privilegies control. DataSunrise Database Firewall provides protection from hacker attacks to the corporate data. Protects from unauthorized access to the database resources. Firewall protects data from the inner threats (data leaks by company employees).
DataSunrise Database Firewall for Amazon Aurora protects from both outside attacks and inside threats. It performs deep packet filtering on application level. Every incoming and outgoing packet is analyzed for compliance with the customized rules set. In case of meeting a forbidden security rule the blocking scenario includes disconnection of a client from DB or closing of the session.
Proxy mode deployment prevents direct communication between client and database. The firewall acts as an intermediary between client and server, it audits and logs queries or blocks execution of the ones violating firewall's security policies.
Smart SQL analysis algorithms provide continuous monitoring of database activity. During initial traffic processing DataSunrise disassembles user queries, database output etc. Then the queries undergo careful analysis and the firewall determines target database objects, schemas, tables names and other important information. Then the firewall logs queries, allows or blocks their execution or obfuscates database output according to predefined security policies.
Scanning of traffic along with detection and blocking mechanisms allows to capture SQL injections in real time. The firewall blocks the following SQL Injection techniques:
Rule conditions include the following parameters:
Among supported features there are: