|
DATABASE SECURITY & COMPLIANCE
DbProtect
REVIEWED BY JAMES C. FOSTER
Application Security Inc.
Price: $3,000 per database per year
With most Web applications leveraging a back-end database, the importance of securing and monitoring your critical databases has never been higher. Application Security's DbProtect offers a one-two punch that scans databases for vulnerabilities and monitors them in real time for potential intrusions and compliance-related issues.
DbProtect consists of two software components. AppDetectivePro is a network-based database and application-specific vulnerability scanning tool for patch and hotfix levels, configuration, compliance and policy weaknesses. AppRadar is an application-layer intrusion detection system that can reside on or near databases to monitor for attacks.
| Installation/Configuration | B |
After DbProtect's infrastructure is designed and implemented, the configuration is relatively straightforward. Most of the configuration for the scan engines and intrusion sensors can be accomplished through the Web GUI. Sensor agents can be installed locally on the database servers or on a network server. We recommend you run tools to baseline the database performance before and after the installations. The vulnerability scanning components are agentless.
You will need to reach out to your DBAs to get the connection and user account information for a current Microsoft SQL Server 2000 database, required as DbProtect's data repository.
| 
