DataSunrise Database Security protects your data and databases both from external and internal threats while performing database audit, activity and traffic monitoring in real-time with high performance.

DataSunrise Database Security is actively available on the spot to protect data in Oracle, DB2, Teradata, MySQL, MSSQL, PostgreSQL, MariaDB, Greenplum, Amazon Redshift, Amazon Aurora and Netezza databases. Due to its cross-platform capabilities, DataSunrise database firewall is compatible with databases running on most popular platforms such as Linux, Unix(AIX, Sun Solaris, HP UX, etc.) and Windows. The wide heterogeneous support and unified security control is especially important when enterprises and organizations run different database and operating system platforms in their environments, both on premises and in cloud.

DataSunrise includes highly efficient Data-Centric security governance policies and controls. The database firewall enables its user to customize the security rule set to easily adapt it to specific application requirements. Moreover, DataSunrise can configure itself automatically due to integrated self-learning algorithms. During the learning period DataSunrise utilizes its Learning Mode functionality to research database users behavior and create a “White List” of typical SQL statements.

DataSunrise database auditing and security is based on the following features:

• The “White List” consisting of SQL statements that comply with the firewall’s data security policy.
• The “Black List” of SQL statements that are defined as harmful and should be blocked by the firewall when detected.
• Safety rules system (includes Database Audit, Data Security and Data Masking rules). It is used to control the firewall behavior based on admin-defined parameters such as database client’s IP address, application, user attributes, SQL statements category and database objects.

Data Masking

DataSunrise gives its user the possibility of controlling sensitive data access due to its data masking capability. DataSunrise prevents sensitive data misuse by letting unauthorized users to see the obfuscated or fake (yet realistic-looking) data instead of the actual data. Depending on security policies set by the Database Security or Firewall administrators, DataSunrise will mask an entire database or just separate database elements such as columns.

SQL injection attacks prevention

DataSunrise Database Security has built-in advanced algorithms to detect suspicious SQL statements and SQL injections.

DataSunrise performs continuous database traffic analysis by inspecting the code of each incoming SQL query. In cases when the query contains any “prohibited” statements from the “Black list”, DataSunrise blocks it immediately and notifies the data security administrators via email.