First Network Solution to Track All Database Access Mechanisms including Host-based Communications for Bullet Proof Compliance Tuesday 8 May 2007 PDF Print FOSTER CITY, Calif. & London, UK – May 8, 2007 Imperva®, the global leader in data security and compliance solutions for the data centre, today announced the SecureSphere Universal Visibility Architecture (UVA) which monitors all database activity regardless of the method used to access the database. SecureSphere is the first network-based database security and compliance product capable of providing full visibility into local events initiated by privileged users and automated maintenance tasks using IPC (Inter Process Communication) mechanisms. Imperva tracks all avenues in and out of a database, including direct access to the host, without requiring any changes to scripts or work processes. To secure sensitive business data and document controls for regulatory compliance, organisations must be able to monitor, audit, and control database access by authorised and privileged users, as well as programs running batch operations or stored procedures. SecureSphere addresses these requirements by providing comprehensive visibility into all database communications mechanisms, eliminating the ability of privileged users to modify audit settings, without impacting application performance. Universal View of Database Activity SecureSphere provides unmatched coverage and policy enforcement across all major database access methods. To ensure that users cannot circumvent the usage auditing and control mechanisms, SecureSphere inspects and tracks in real-time all database communication mechanisms, including: Web and networked applications. SecureSphere can link transactions to responsible users even when the database is accessed using pooled login connections. Remote access, including encrypted traffic, over the network (e.g. telnet sessions). "Coded" access using stored procedures, prepared statements, and batch operations that run with super user privileges. Local access, including the ability to inspect IPC mechanisms such as Bequeath for Oracle, which is commonly used by database administrators and automated maintenance scripts. In addition, SecureSphere performs deep inspection and validation of database protocols to ensure all activity, including attempts to bypass database protocol rules, is monitored and audited. “To be reliable, especially for compliance purposes, database monitoring must cover 100 percent of the access mechanisms used by an organisation,” said Amichai Shulman, CTO of Imperva. “Until now, tracking local database activity from a network appliance has required that IT departments implement database access work arounds. With SecureSphere organisations can centrally audit all database activity without any modifications to their infrastructure.” Separation of Duties and Processing To ensure privileged users can not tamper with, shut down, or circumvent monitoring and auditing, SecureSphere appliances are isolated from the data management infrastructure and operate independent of DBAs. Unlike host-based solutions which typically add between 30% and 50% of processing overhead on monitored systems, SecureSphere does not reduce the performance of production systems. Pricing and Availability The SecureSphere agent with IPC support is available immediately from Imperva and its business partners worldwide. It is currently available at no cost to SecureSphere customers as part of their maintenance agreement. - ends - About SecureSphere The award-winning Imperva SecureSphere products deliver practical solutions to protect sensitive data in the databases, Web applications, and Web services that support business critical systems. SecureSphere assesses, monitors, and audits all access to an organisation's databases, and tracks and controls user activity through Web applications and Web services. With SecureSphere, organisations have an automated, proven means to achieve and document regulatory compliance. SecureSphere uniquely saves time and IT resources by operating transparently with no changes to existing infrastructure and dynamically, requiring no manual tuning. About Imperva Imperva is the global leader in data security and compliance solutions for the data centre. The Imperva product line provides an automated and transparent approach to protecting and controlling sensitive data throughout transactional data systems. The Imperva database and Web application appliances are deployed in leading financial, retail, telecommunications, healthcare, and government organisations around the globe. Founded over five years ago by Shlomo Kramer, recently named one of the 20 luminaries who changed the network industry, Imperva is a solid, privately held company with growing revenues and backing from Accel Partners, Greylock Partners, US Venture Partners, and Venrock Associates. For more information, visit www.imperva.com. ### Imperva and SecureSphere are trademarks of Imperva, Inc. All other brand or product names are trademarks or registered trademarks of their respective holders. Press Contact: Paul Shlackman, Bond PR +44 (0) 1628 673007; firstname.lastname@example.org This press release was distributed by ResponseSource Press Release Wire on behalf of BondPR UK in the following categories: Business & Finance, Computing & Telecoms, for more information visit http://pressreleasewire.responsesource.com/about.