AUDIT ANALYSIS FEATURE REDUCES IT THEFT.IPLocks, San Jose San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif., an innovative provider of database vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. , continuous risk monitoring and non-repudiation audit analysis systems, has unveiled IPLocks version 4.1. IPLocks 4.1 expands the functionality of its external, non-intrusive, cross-platform, highly scalable database security management system with the introduction of audit analysis for analyzing transactions. IPLocks 4.1 automates the detection and notification of database reads and changes and archives events to ensure data security, integrity and availability for regulatory compliance. "Protecting corporate data is critical for enterprises today," said Akio Sakamoto, president, CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. and Co-founder of IPLocks. "The majority of IT security products such as firewalls, anti-virus and intrusion detection systems This article is about the computing term. For other uses, see Burglar alarm. An intrusion detection system (IDS) generally detects unwanted manipulations of computer systems, mainly through the Internet. make an important contribution to IT security but do not prevent or expose fraudulent database activity and information theft -- which can be achieved through legitimate access. Gartner estimates that more than 70 percent of unauthorized access to information systems is committed by employees, as are more than 95 percent of intrusions that result in significant financial losses. IPLocks has taken another major step forward in database security with version 4.1, enabling customers to easily gain insight into information reads and changes to proactively protect critical information where it resides -- in the database." IPLocks 4.1 provides database monitoring, assessment, and real-time notification required for secure enterprise-wide database security operations and facilitates regulatory compliance for all major database platforms including Oracle, DB2, SQL Server An earlier relational DBMS from Sybase and from Microsoft. Sybase introduced SQL Server in 1988 for various Unix versions. In that same year, with help from IBM, Sybase created an OS/2 version that Microsoft licensed and branded as Microsoft SQL Server. , Sybase and HiRDB (Hitachi). IPLocks 4.1 captures, displays, and archives the 4Ws of information theft -- the who, what, when and where of data changes. With real-time notification, organizations gain immediate access to before and after snapshots to validate changes that occurred. "Auditing your database security first by establishing key security baselines and then by monitoring the changes over time is a key ingredient to a successful security program," said Pete Lindstrom, Research Director at Spire Security. "IPLocks provides a comprehensive solution for evaluating database activity and identifying inappropriate or malicious behavior." IPLocks 4.1 detects, analyzes and monitors database security policy violations, suspicious or malicious changes, structural integrity changes, as well as user access patterns to ensure secure, authorized au·thor·ize tr.v. au·thor·ized, au·thor·iz·ing, au·thor·iz·es 1. To grant authority or power to. 2. To give permission for; sanction: business operations Business operations are those activities involved in the running of a business for the purpose of producing value for the stakeholders. Compare business processes. The outcome of business operations is the harvesting of value from assets . Through the inclusion of more non-deterministic assessment capabilities, the system "learns over time" based on actual usage patterns, and continually tracks against session policy definitions, usage rules and defined parameters. By monitoring changes in user behavior over time, the system is able to detect, and reduce the threat of information theft. IPLocks 4.1 New Features -- Session Policy and Usage Pattern Monitoring -- Alerts to uncommon or excessive access. -- Alternative Audit Analysis Option -- Monitors record-level changes and updates by displaying who, what, when and where (4Ws of information theft) about the change, without turning on Oracle's audit trail and provides the ability to delete guarded items without removing them from the audit management tables. -- Server Role Monitoring for MS SQL See Microsoft SQL Server and mSQL. -- Provides insight into users and their corresponding server roles. -- Automatic Discovery of DBMS (DataBase Management System) Software that controls the organization, storage, retrieval, security and integrity of data in a database. It accepts requests from the application and instructs the operating system to transfer the appropriate data. -- Automatically locates active databases on the local subnet (SUBNETwork) A logical division of a local area network, which is created to improve performance and provide security. To enhance performance, subnets limit the number of nodes that compete for available bandwidth. and assists in database connection creation. -- Automated Global Amendment of Rule and Policy Descriptions -- Provides users with the ability to globally amend rule/policy descriptions and severity levels of pre-defined rules and avoid creating new rules from scratch. -- Penetration Testing A test of a network's vulnerabilities by having an authorized individual actually attempt to break into the network. The tester may undertake several methods, workarounds and "hacks" to gain entry, often initially getting through to one seemingly harmless section, and from there, Capabilities -- Performs brute force attacks The systematic, exhaustive testing of all possible methods that can be used to break a security system. For example, in cryptanalysis, trying all possible keys in the keyspace to decrypt a ciphertext. See dictionary attack. See also brute force programming. on new or existing databases to determine common or easily detected passwords. -- Improved Progress Status and Detailed Reporting in CVA CVA abbr. cerebrovascular accident CVA, n See accident, cerebrovascular. CVA cerebrovascular accident. CVA Cerebrovascular accident, see there -- Provides notice when the CVA is running an assessment and displays passed/failed alarm descriptions. About IPLocks IPLocks, Inc. is a leading provider of database monitoring, assessment and audit analysis systems used by business operations, global security, risk management and IT personnel to manage business processes, procedures and controls and protects the integrity, security, availability and confidentiality of mission critical databases. IPLocks automates the notification of system level database changes for security and business policy violations, suspicious, malicious or corrupt data, structural integrity and information theft that other security policies fail to prevent. IPLocks enables government agencies, audit services, financial institutions, service providers and other markets to mitigate information risks where database security and monitoring is essential to ensure uninterrupted business operations. For more information, visit http://www.iplocks.com or call 408/383-7513. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion