VioPoint

As part of our ongoing product spotlight series, VIOPOINT leverages content taken from our industry leading partners and summarizes it in the quarterly newsletter. Our featured offering for this newsletter is the Imperva Data Security Suite.

With critical data now accounting for nearly 80% of an organization's value...locating, securing, and managing this information presents great challenges for most organizations. Imperva provides a suite of data security products that offers end-to-end protection between applications and databases. The following highlights were taken from Imperva product documentation to summarize many of the unique security features offered by this product set.

The Industry Standard in Data Security, Auditing and Compliance.

The SecureSphere® Data Security Suite unifies audit, security and risk management for business databases and the applications that use them. In a single, comprehensive security platform, the market-leading Web Application Firewall, Database Activity Monitoring and Database Firewall prevent sensitive data theft, protect against data breaches, secure applications, and ensure data confidentiality. Combining visibility and control for both applications and databases, SecureSphere delivers full activity monitoring from the database to the accountable application user and is widely recognized for its overall ease of management and deployment.

The Data Security Suite offers end-to-end protection and control for applications and databases. SecureSphere addresses all aspects of the data security lifecycle and helps businesses:

• Protect both applications and databases
• Deliver an independent audit trail and intelligent audit analytics
• Identify the application users that perform database transactions
• Streamline audit and compliance efforts
• Transparently deploy in any environment with zero impact on performance

By providing a solution that protects data across the enterprise (database, application and user), Imperva demonstrates that Web and database security together are designed to achieve one ultimate goal: to safeguard sensitive data. Combining the security of the SecureSphere Web Application and Database Firewalls, the visibility of Database Activity Monitoring, and the vulnerability management of the Discovery and Assessment Server, the SecureSphere Data Security Suite delivers a comprehensive risk management framework to assess, audit and protect the most critical assets in any organization: the database and the business applications that use them.

User Accountability

Because SecureSphere unifies Web and database activity monitoring, it solves a key requirement for audit and compliance: identifying application end users that performed database transactions, even in multi-tier environments. SecureSphere's Universal User Tracking discovers application IDs, monitors user sessions and correlates those sessions with specific database transactions. SecureSphere accurately associates application users with SQL queries, enforcing user accountability as mandated by compliance regulations.

Complete Visibility and Control

Through the use of an integrated solution, organizations gain unmatched insight, accurate identification of end users, and correlation of application and database activity. SecureSphere is the clear choice to assess, monitor and protect sensitive data.

Discovery and Assessment Server

The SecureSphere Data Security Suite includes the Discovery and Assessment Server, which discovers database servers, classifies information based on sensitivity levels, and assesses databases for vulnerabilities. To assess organizations' security and compliance posture, SecureSphere scans databases for over 500 software vulnerabilities, configuration flaws, privilege errors, and compliance violations. All assessment results are presented in easy to understand reports that prioritize risk, support targeted corrective action, and document compliance status.

Database Activity Monitoring

SecureSphere delivers automated and scalable activity monitoring, auditing, and reporting for Oracle, MS-SQL, DB2, Informix, MySQL, Sybase, and SybaseIQ. SecureSphere tracks SQL transactions for forensics, prevents database leaks, and ensures data integrity by establishing an independent audit trail of user activity.

Detailed Activity Monitoring

SecureSphere captures all database actions, including DML, DDL, DCL and read-only activity, as well as changes made to store procedures, triggers, and database objects, ensuring complete audit trails of database activity.

Audit Analytics and Compliance Reports

Visibility into audited activities enables non-technical auditors to analyze, correlate, and view database activity with just a few mouse clicks, uncovering the patterns and trends that indicate security risks. SecureSphere provides both fully customizable and "out-of-the-box" reports for security and compliance.

Zero Impact on Performance

Unlike native database logging or software auditing, SecureSphere imposes no impact on database or application performance.

Database Firewall

Building on the visibility provided by Database Activity Monitoring, the SecureSphere Database Firewall provides real-time protection to prevent database intrusions, fraud, and sensitive data loss.

Web Application Firewall

The SecureSphere Data Security Suite leverages the power of the market-leading SecureSphere Web Application Firewall to protect applications against sophisticated attacks. SecureSphere accurately blocks SQL injection, Cross-Site Scripting (XSS) and brute force login, stops online identity theft, and prevents data leaks from applications.

Automated Security

SecureSphere's unique Dynamic Profiling technology automatically learns the structure, elements and usage of protected web applications. By comparing transactions to the profile, SecureSphere detects malicious activity with pinpoint precision.

Unparalleled Accuracy

SecureSphere performs multiple layers of inspection, detecting:

• Usage violations by Dynamic Profiling
• Application attack signatures
• HTTP protocol violations
• Network and platform attacks
• Web services (XML) attacks
• Session exploits
• Data leakage signatures

Discover and Assess

The first step to achieving data security and compliance is to construct an accurate assessment of applications and databases in the network and their security posture. SecureSphere can discover database servers, classify sensitive information, and assess databases for vulnerabilities and configuration flaws, and present results in both high-level and detailed reports. Clear, comprehensible reports allow organizations to document compliance status to auditors. SecureSphere's pre-defined reports and robust reporting framework can present business-relevant reports to any audience with ease. SecureSphere can summarize the results of each stage of the security and compliance lifecycle and illustrate the organization's security risk and compliance state.