Feature

Lumigent Audit DB 6.0 product review

Ezine

This article can also be found in the Premium Editorial Download "Information Security magazine: Comparing seven top integrated endpoint security suites."

Download it now to read this article plus other related content.

DATABASE SECURITY


Lumigent Audit DB 6.0
REVIEWED BY JAMES C. FOSTER

Lumigent

    Requires Free Membership to View


Price: Starts at $10,500

Lumigent Audit DB 6.0 helps organizations, particularly those with significant compliance-related issues and failed audits, protect and audit production databases.

The overarching problem remains that database administrators and engineers do not have the security background required to lock down their databases. Audit DB 6.0 is designed to audit, monitor and protect databases.

Audit DB has two main auditing components. The first captures network traffic to and from the database. Matching patterns or out-of-policy actions are identified, triggering alerts. The second mode uses agents to pull database log files, activity information and general database configuration information.

Installation/ConfigurationB  
Installing and configuring Audit DB is not an afternoon project. Plan for key stakeholders within the database, network and security teams to provide input into the Lumigent product. You will need system and database administrative credentials for the target databases as well as admin-level access for the system that is going to house the Audit DB reporting engine. Network administrators will help identify placement of the Audit DB NetWatch sniffer agents, which can reside on the target databases or on nearby systems. Your design will depend on the number of databases you must audit; for multiple databases, it's probably best to monitor them centrally as opposed to leveraging individual agents. Each component's policy can be tailored to the rules that matter to the organization or geared toward a regulation.

Lumigent supports all major database platforms including Microsoft SQL Server, IBM DB2, Sybase and Oracle, all with good documentation.


ReportingB+  
Audit DB 6.0 is built atop a role-based reporting engine that allows you to create and schedule reports based upon organizational components, specific servers or technologies, and audit requirements. Its strength is its compliance/audit reporting capability, which supports SOX, GLBA, SAS 70, HIPAA, PCI, SB 1386 and Basel II. It also includes frameworks such as COBIT, COSO and ITIL. These preconfigured reports are easily customized.

Executive and/or managerial dashboard-level views allow you to drill down to the audited systems.

Of particular interest is Audit DB's user reporting capability. Most regulations place heavy emphasis on user provisioning and decommissioning. Audit DB has strong features meeting compliance standards for user management and can be a valuable tool for identifying obsolete or dormant users, validating password policies, and identifying privileged users and entitlements.

Management/MonitoringA  
The most beneficial feature of Audit DB 6.0 is its API, which comes with a complete 98-page reference, flush with SOAP interface details and code samples. This integration allows database administrators and developers to leverage Audit DB's functionality natively within its environments. Through the API, database and application developers have the ability to write events, logs and other data to the Lumigent repositories, while administrators can automate common maintenance.

The SOAP interface is efficient and clean. If you've ever implemented an RSS or XML feed you won't have an issue integrating this feature.

The tabs in the Web-based management interface allow you to access all data collected by Audit DB. Drill-down reports take you into the details of an event with timestamps, user information, data sources and activity.


Verdict
Audit DB is a strong tool for organizations that are mandated to achieve and report compliance on their database servers.



Testing methodology: We tested Lumigent Audit DB 6.0 running on an Intel-Red Hat Enterprise Linux machine auditing an Oracle 10g R2 database on Red Hat Linux and SQL 2000 on Windows 2003 Server.

This was first published in November 2007

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: