Imperva Enhances Database Activity Monitoring Solution with New Analytics Capabilities

Imperva, a leading provider of application data security, has announced a new version of its SecureSphere database activity monitoring (DAM) solution that adds analytics intelligence to automate forensic and audit investigations. SecureSphere now provides near real-time multidimensional views of audit data, collects native audit logs from new platforms, and bridges the gap between obscure SAP audit data trails and their associated business transactions.

Regulations including Sarbanes-Oxley (SOX), the payment card industry data security standard (PCI DSS), the Gramm-Leach-Bliley Act (GLBA), and Basel II are all driving the need for advanced database controls, audit mechanisms, and forensic analysis tools to tighten security over databases and transactional systems. The new features in SecureSphere make DAM more intelligent, easier to use, and more flexible to deploy.

Mark Kraynak, vice president of marketing for Imperva, tells 5 Minute Briefing that "the three key new capabilities in this latest release of SecureSphere are interactive audit analytics to provide answers to baseline audit questions (who, what, where, when, how), business analysis of SAP audit trails, and a new database audit collection mechanism called the native log collector."

The interactive audit analytics capability enables non technical database auditors to analyze, correlate, and view database activity from virtually any angle with just a few mouse clicks. Now SecureSphere users can easily identify trends and piece together patterns that may conceal security risks or compliance problems. For example, these analytics make it simple to analyze failed logins to determine whether a brute-force attack has occurred and identify the source and destination of the attack. They can also enable auditors to investigate unauthorized operations to pinpoint those that were successfully completed or resulted in SQL errors.

For SAP applications, SecureSphere can now reconcile business transactions and their underlying data structures. As a result, business users and auditors can establish controls that provide the granularity of supporting audit data required for regulatory compliance reporting. SecureSphere can now bridge this gap with SAP transactional awareness, which includes a pre-mapped list of more than 150 privileged SAP transactions and the ability to recognize/piece together customized transactions.

To extend its monitoring capabilities and eliminate changes to existing infrastructures, Imperva has added a third database audit collection mechanism called the native log collector. This capability complements Imperva's existing network- and agent-based collection options to deliver the broadest and most flexible database auditing platform on the market. SecureSphere native log collector also enables Imperva to expand its database coverage into new areas, including support for Teradata data warehouses. For more information about the new release of SecureSphere and Imperva, go here.