extrusion prevention

Network administrators and anyone responsible for maintaining a secure database faces unprecedented challenges in controlling the flow of proprietary data across gigabit networks. A catrastophic data breach involving proprietary information can have a substantial negative impact on an organization's market share, brand, financial health and compliance status. Pervasive use of instant messaging, P2P file sharing, FTP file transfer, webmail and USB drives offer multiple vectors for information to escape an organization's traditional gateway controls. Extrusion prevention software offers the administrator a set of tools to manage risk.

Extrusion prevention software uses a combination of network monitoring systems and real-time packet filtering. In general, database extrusion prevention (DBEP) software provides a central interface to regulate traffic regardless of its origin. There are three broad categories of DBEP:

• packet sniffer s that filter incoming calls to Web servers
• gateway s or proxies on network hubs
• client-side agents that are installed on local machines.

Some products stop attacks by sending TCP resets to both the Web server of the attack and the targeted database server. Others will block known attack techniques, like SQL injection, or prevent unauthorized access based on user permission settings or activity that does not match with usage profiles. Pattern recognition techniques, like network behavior anomaly detection (NBAD) and network behavior analysis (NBA) both allow administrators to identify and stop abnormally large data transfers.

Learn more about Identity Theft and Data Security Breaches

Quiz: Data loss prevention: Take this five-question quiz to test your knowledge of Rich Mogull's data loss prevention material.
Information theft and cryptographic attacks: The third tip in our series, "How to assess and mitigate information security threats".
Balancing the cost and benefits of countermeasures: The final tip in our series, "How to assess and mitigate information security threats".
Elements of a data protection strategy: An overview of the importance of securing data for regulatory compliance and the five components of an enterprise data protection strategy.
	Ensure that legal responsibilities are clear -- Especially when trouble strikes: Excerpt from Chapter 15 of Information Nation Warrior: Information Management Compliance Boot Camp.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

More resources from around the web: - Neil Roiter discusses extrusion prevention in 'Springing leaks: Getting smart about data loss prevention.' - In this tip, Noah Schiffman explains 'Data loss prevention, from the inside out.' - Extrusion prevention software's role in preventing data leaks is described at FCW.com. - Charles Thompson explored the use of extrusion prevention software to deal with internal security threats in school systems. - John H. Sawyer wrote about extrusion prevention on NetworkComputing.com.

FILE EXTENSION AND FILE FORMAT LIST File Extension and File Format List: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

RELATED CONTENT Chip and PIN adoption serves lesson for U.S. payment industry As payment processors offer plans for end-to-end encryption, the UK is finding success with chip and pin deployments. The U.S. payment industry should... Group to shed light on secure identity management threats Identity management technologies are struggling to keep pace with constantly evolving nature of attacks, according to the Center for Applied Identity... Heartland CIO is critical of First Data's credit card tokenization plan First Data Corp. uses RSA software for tokenization, providing a possible threat vector for attackers, says Heartland CIO Steven Elefant.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary bot worm  (SearchSecurity.com) A bot worm is a self-replicating malware program that resides in current memory, turns infected computers into zombies (or bots) and transmits itself... CISP-PCI  (SearchFinancialSecurity.com) CISP (Cardholder Information Security Program) and PCI (Payment Card Industry Data Security Standard) are specifications developed and used by credit...