Data Security | News

Oracle Launches Platform-Neutral Database Firewall

• By Leila Meyer
• 02/15/11

At the RSA Conference in San Francisco this week, Oracle debuted Oracle Database Firewall, a multi-platform data security tool that's designed to protect enterprise databases against internal and external attacks in real time.

Oracle Database Firewall monitors for unauthorized database access, SQL injection attacks, privilege or role escalation, and other internal and external attacks. It examine each SQL statement and analyzes SQL grammar to allow or deny a statement based on predefined white list and black list policies, exception policies for overriding application security policies, and other SQL policies based on time of day, IP address, application, user, and SQL category.

Oracle Database Firewall works with the following database software:

• Oracle Database 11g and previous releases;
• IBM DB2 for Linux, Unix, and Windows (versions 9.x);
• Microsoft SQL Server 2000, 2005, and 2008;
• Sybase Adaptive Server Enterprise (ASE) (versions 12.5.4 to 15); and
• Sybase SQL Anywhere v10.

The tool offers safe reporting (reporting tools that can mask sensitive information) with customized reporting for specific regulatory requirements; support for monitoring on-premises activities (including input on local stations or remote input from privileged users); and real-time alerts for suspicious activity. The software does not require any changes to existing software, databases, or operating systems.

Oracle Database Firewall is available now. Further information can be found here.