Symantec adds intruder identification to database security software

By Robert Westervelt, News Editor 30 Oct 2007 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Symantec introduced the latest version of its Symantec Database Security, adding an intruder identification feature and integration with its Security Information Manager.

Version 3.0 of Symantec Database Security adds real-time transaction policy alerts. A new feature that tracks and automatically recommends SQL behavior patterns and IT policies has also been introduced.

Database security: Compliance, data breaches heighten database security needs: Experts say database platforms lack robust native encryption, monitoring, assessment and management tools to meet demanding new security requirements. New database forensics tool could aid data breach cases: Database security researcher, David Litchfield of UK-based NGS Software will release a free Forensic Examiners Database Scalpel, he says could aid data breach investigations. Richard Clarke: Don't ignore data risks, deploy encryption: At a recent keynote with CISOs during the Gartner IT Security Summit, former White House cybersecurity czar Richard Clarke warned that firms are doing little to prevent data theft.

Symantec entered the database security market introducing the software and its 2.0 initiative last year. At the time the software contained auditing and monitoring features. The software supports multiple databases, including Oracle, IBM DB2 and Microsoft SQL Sever and integrates with hardware device management tools such as Dell OpenManage, Hewlett Packard OpenView and Symantec Security Information Manager.

Symantec said the latest version also includes some performance enhancements to increase transaction speed. The software also comes with compliance report templates and a new user interface.

The intruder identification component allows users to trace suspicious activity back to its source. It matches user credentials or IP address with the information captured on the backend database transaction.

Symantec is also integrating the components with its management console. Database security alerts will be available for the Symantec Security Information Manager (SSIM).

Symantec's software is an "easy-to-use, high-performance, viable solution," said Industry Analyst Noel Yuhanna of Forrester Research. But the vendor is competing in a crowded market against more than a dozen others, he said recently in a report on Symantec's entry into the database security market.

"A database security solution helps the vendor to further extend its already-established data security presence and moves it one step closer toward delivering an end-to-end enterprise security offering," Yuhanna said.

Tags: Database Security Management,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Database Security Management What is the best database patch management process? Unpatched vulnerability discovered in Microsoft SQL Server SQL injection continues to trouble firms, lead to breaches Oracle issues quarterly patches, fixes database flaws Database monitoring, encryption vital in tight economy, Forrester says Oracle to buy Sun Microsystems for $7.4 billion Oracle issues 43 updates, fixes serious database flaws Imperva assigns security risk levels to databases How to create configuration management plans to install DLP Information security book excerpts and reviews Database Security Management Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary data encryption/decryption IC  (SearchSecurity.com) International Data Encryption Algorithm  (SearchSecurity.com) link encryption  (SearchSecurity.com) MD2  (SearchSecurity.com) MD4  (SearchSecurity.com) MD5  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary