Network-Based Security Software Monitors Traffic and Helps Prevent Attacks from Reaching Oracle and Non-Oracle Databases
RSA® Conference, SAN FRANCISCO – February 14, 2011
To help organizations prevent sophisticated internal and external attacks from reaching their enterprise databases, Oracle today announced the availability of Oracle® Database Firewall.
Oracle Database Firewall establishes a defensive perimeter around databases, monitoring and enforcing normal application behavior in real-time, helping to prevent SQL injection attacks and unauthorized attempts to access sensitive information.
Using innovative SQL grammar analysis technology, Oracle Database Firewall examines SQL statements sent to the database and determines with high accuracy whether to pass, log, alert, block or substitute SQL statements based on pre-defined policies including:
White list policies that refer to the approved SQL statements the firewall will pass through as normal while the rest can be blocked;
Black list policies refer to the list of unauthorized SQL statements that are blocked specifically;
Exception policies offer the flexibility to override applicable security policies to support patching, custom batch jobs, and/or break-glass administrative controls; and,
Policies utilizing attributes such as time of day, IP address, application, user, and SQL category.
Simple to deploy, Oracle Database Firewall does not require any changes to existing applications, the database infrastructure or the existing operating system of the target database.
Oracle Database Firewall can be deployed in-line on the network for both blocking and monitoring or out-of-band for monitoring-only mode.
The Oracle Database Firewall is a complete software solution that runs on Intel-based hardware, and can easily scale to support large numbers of database servers.
With dozens of prebuilt and customizable reports, the Oracle Database Firewall helps organizations comply with privacy and regulatory mandates such as Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), and Health Insurance Portability and Accountability Act (HIPAA).
Oracle Database Firewall is available today for use with:
Oracle Database 11g and previous releases;
IBM DB2 for Linux, UNIX and Windows (versions 9.x);
Microsoft SQL Server 2000, 2005 and 2008;
Sybase Adaptive Server Enterprise (ASE) (versions 12.5.4 to 15); and,
Sybase SQL Anywhere V10.
As part of Oracle’s comprehensive portfolio of database security solutions, Oracle Database Firewall complements Oracle Advanced Security, Oracle Audit Vault and Oracle Database Vault. Together, the products support Oracle’s commitment to provide customers with the most comprehensive and advanced security offerings that help reduce the costs and complexity of securing their business information across the enterprise.
“Evolving threats to databases require enterprises to look at new security solutions,” said Vipin Samar, vice president of Database Security, Oracle. “Oracle Database Firewall offers organizations a first line of defense that can stop internal and external attacks from reaching databases. Easy to deploy and manage, Oracle Database Firewall helps reduce the costs and complexity of securing data across the enterprise without requiring any changes to existing applications and databases.”
About Oracle Database Firewall
Read the Oracle Database Firewall Data Sheet
Read the Oracle Database Firewall White Paper
Access the Oracle Database Firewall Resource Kit
About Oracle Database Security
About Oracle Database 11g
Connect with Oracle Database via Blog, Facebook and Twitter
Oracle (NASDAQ: ORCL) is the world’s most complete, open, and integrated business software and hardware systems company. For more information about Oracle, please visit our Web site at http://www.oracle.com
Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners.