Shulou(Shulou.com)06/01 Report--

Database security audit is mainly used to monitor and record all kinds of operation behavior of database server, analyze all kinds of operation of database server in real time and intelligently through analyzing network data, and record it in audit database for query, analysis and filtering in the future, so as to realize monitoring and auditing of user operation of target database system. It can monitor and audit the creation, modification and deletion of database tables, views, sequences, packages, stored procedures, functions, libraries, indexes, synonyms, snapshots, triggers, etc. in the database. The analysis content can be accurate to the SQL operation statement level. It can also judge the behavior of illegal operation database intelligently according to the set rules, and record and alarm the illegal behavior. Because the database security audit system works in the network where the database host is located in a network bypass mode, it can track and locate the operation of the database without changing any setting of the database system, realize online monitoring of the database, realize online monitoring and protection of the database without affecting the performance of the database system itself, and timely discover the illegal operation behavior of the database on the network and record, Alarm and real-time blocking effectively make up for the shortcomings of the existing application service system in the safe use of the database, and provide a strong guarantee for the safe operation of the database system.

The main functions of database security audit include:

·Real-time monitoring and intelligent analysis, restore a variety of database operations.

·Block violations in time according to rule settings to protect important database tables and views.

·Track database system vulnerabilities, login accounts, login tools and data operation processes, and discover abnormal use of database systems.

·Support multiple conditional rule settings for log-in users, database table names, field names, keywords, etc. to form flexible audit policies.

·Provide various response measures including recording, alarm, interruption and alarm to the network management system.

·Powerful query statistics function, can generate professional reports.

II. Main characteristics of database security audit

·Bypass technology is used without affecting the performance of the protected database.

·Simple to use, no setup required for protected databases.

·Support SQL-92 standard, widely applicable, can support Oracle, MS SQL Server, Sybase, Informix and other multi-class databases.

·High audit granularity, audit and restore SQL operation statements.

·It adopts distributed monitoring and centralized management structure, which is easy to expand.

·Complete "separation of powers" management system to meet the management requirements for sensitive content audit.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.