SecureSphere Database Security Gateway fortifies your database
Appliance shields your data from malicious acts and mistakes
You can also set SecureSphere to only allow certain queries, or to permit only specific users to perform work on the server during certain hours. This capability has endless applications for everything from preventing actual abuse to simple mistakes. Abuse is easy to understand, but what mistakes could be prevented? You could keep DBAs from accidentally running reindex statements; deleting or updating data without “where” clauses; altering tables; dropping database objects; and so on. Using this as a method of change control only makes you look that much better to the auditors, and it helps you tighten down your environment so when something happens, you can narrow down the possibilities very quickly.
You can set SecureSphere to perform various actions when a policy is violated. You might have it merely block the activity, which is really more of a passive way of dealing with the intrusion. Alternatively, you could take a more aggressive approach and block the user from further activity, send an e-mail, or block the IP of the connecting process (my personal favorite). The more proactive approaches let you investigate the suspicious activity on the spot by not allowing the user to perform any more work at all until you manually unblock him or her.
Imperva’s reporting is useful, but it has notable limitations. There are some very helpful reports on the activity hitting your server; unfortunately though, they’re only viewable from the Web console and not easily exportable for archiving purposes, nor can they be e-mailed automatically. The company tells me that later this summer such a functionality will be added, but currently the reports’ usefulness in compliance audits remains more limited than it should be, requiring a lot of manual labor on the admin’s part.
SecureSphere does provide specific reports that will help you gather valuable information for compliance audits. HIPAA, CIP, and Sarbanes-Oxley are all covered. I did find, however, that going through some of the report screens is very slow at times, so looking for something specific on a busy server can take a while. There’s also no way to add your own reports.
The SecureSphere Database Security Gateway is a very important part of a complete database security model. It not only fills the security void left by vendors, it also provides the only means of preventing privilege abuse to date. You simply can’t find a better means of preventing unwanted queries from hitting your system. When it comes down to it, there is far too much functionality in this product to detail here. Still, you’ll realize its usefulness immediately.