Lab Review Cites “Swift Deployment, Extensive Database Support, Sophisticated Policy-Based Security, Unique S-Tap and S-Gate Probes, [and] Vulnerability Assessment Tools”
London, UK - 14 May, 2009 - Guardium, the database security company, received 5 out of 5 stars on Features, Performance and Ease-of-Use in an extensive Guardium 7 lab review published in the April 2009 issue of SC Magazine UK.
The review states that Guardium 7 “provides essential tools to protect against the ever-increasing number of security threats” and “provides a range of security measures that allow companies to audit database usage and enforce policies to prevent unauthorised access” while providing an “intuitive web interface” that “offers a range of preconfigured interfaces for data privacy regulations and compliancy guidelines.”
The review concludes that “you have to ask yourself whether you can afford not to have [Guardium 7].”
This solid review comes on the heels of a February 2009 review by IT PRO, the UK’s most comprehensive IT news and reviews site, which called Guardium 7 “a sophisticated solution” to make sure breaches “never happen in the first place.”
Vulnerability Assessment Provides “Huge Range of Predefined Tests”
Guardium 7 integrates a number of new features, including comprehensive vulnerability assessment. According to the SC Magazine reviewer, Dave Mitchell, “tests are simple to configure and Guardium provides a huge range of predefined tests” that “look for a wide range of weaknesses”. These tests include:
• Database configuration tests to ensure that controls, such as account lockouts, are effectively addressing multiple failed login attempts.
• Observed behaviour tests that look for unauthorised activities such as users sharing privileged credentials.
• Operating system file and associated privileges tests that examine critical OS and database configuration files, environment variables and registry entries that can also affect your database security posture.
Guardium’s vulnerability assessment module is unique in allowing users to easily create customised tests via multiple methods including scripts, custom Java classes and SQL queries.
Blocking Unauthorised Privileged User Access Without Interfering with Application Traffic
The SC Magazine UK review states that Guardium’s S-TAP probe “has distinct advantages in network monitoring” because it “runs on the database server where it can monitor local as well as network traffic and uniquely it doesn't need database logging to be enabled, so improving performance.”
Guardium S-GATE, an extension to S-TAP, is the industry’s only solution for blocking administrators from viewing or changing sensitive data in heterogeneous DBMS environments. S-GATE also terminates access – based on policies –when privileged users attempt to perform unauthorised security functions, such as elevating privileges for database accounts.
Mitchell wrote: “We found it simple to create a rule to control system users where we could stop them from accessing specific test database tables containing credit card numbers and using particular commands. After creating the rule, we logged on to the Oracle 10G database and when we tried to select the tables described in the rule, our session was terminated immediately by the S-GATE probe.”
In addition, “Data exiting databases is monitored by extrusion rules that can see the results of user queries and check for patterns, such as credit card numbers. The interface makes light work of query creation as it breaks them down into their component parts, making for a shallow learning curve.”
Multiple Defences Against SQL Injection Attacks
SC Magazine highlighted Guardium’s multiple defences against SQL injection attacks:
• Real-time monitoring watches out for suspicious or unauthorised activities.
• Correlation alerts keep you posted on events such as an unusual number of SQL errors or login failures.
• Baselining allows users to get a clear picture of normal database usage in their environments. The system then suggests policy rules based on its findings and any activity considered abnormal will cause real-time alerts or other actions.
Discovering Sensitive Data in Databases
The review states that “Guardium's classification will be useful if you are not sure where sensitive information is being kept. This sends a crawler out to the databases where it can look for specific information and create policy rules that are dependent on the information found.”
Guardium, the database security company, delivers the most widely-used solution for preventing information leaks from the data centre and ensuring the integrity of enterprise data.
The company’s enterprise security platform is now installed in more than 450 data centres worldwide, including 3 of the top 4 global banks; 3 of the top 5 insurers; 2 of the top 3 global retailers; 15 of the world’s top telcos; 2 of the world’s favourite beverage brands; the most recognised name in PCs; a top 3 auto maker; a top 3 aerospace company; and a leading supplier of business intelligence software.
The company has partnerships with Oracle, Microsoft, IBM, BMC, EMC, Accenture, McAfee and ArcSight, with Cisco as a strategic investor, and is a member of IBM's prestigious Data Governance Council and the PCI Security Standards Council.
Founded in 2002, Guardium was the first company to address the core data security gap by delivering a scalable enterprise platform that both protects databases in real-time and automates the entire compliance auditing process.
Guardium and S-GATE are trademarks of Guardium, Inc. All product and company names herein may be trademarks of their registered owners.
About SC Magazine
SC Magazine is the leading monthly computer security magazine in the UK. The title covers all aspects of computer security news from individual product reviews, comparative product reviews, applications and solutions. SC Magazine is a 'must have' title for IT Security professionals.
David Bancroft and Ellie Turner
(+44) 208 996 1654
This press release was distributed by ResponseSource Press Release Wire on behalf of Prompt Communications Ltd in the following categories: Computing & Telecoms, for more information visit https://pressreleasewire.responsesource.com/about.