• Company
  • About US
  • NEWS
  • Development
  • Contact US
  • Sitemap
• Partners
  • Become A Partner
  • Reseller/Distributor
  • Links
• Solution
• Download
• Services
  • Professional Security Services
  • WEB Security Services
• Products
  • DAS-DBAuditor
  • DAS-WEBMonitor
  • DAS-LOGAuditor
  • DAS-WEBSCAN(MatriXay 3.0)
  • DAS-DBSCAN
  • DAS-WAF
• Home

Overview
DBAPPSecurity Database Auditor (DAS-DBAuditor) is a combination of database security theories and many years’ practice experience of DBAPPSecurity Limited, also it compliances with various types of laws and regulations (such as SOX, PCI, corporation internal control management, and grading protection, etc.) which have requirements on database auditing. It is a self-developed product which is the pioneer fine-grained auditor with accurate behavior backtracing and overall risk controlling.

DAS Database Auditor works as independent audit hardware with flexible audit strategy configuration to solve the problems of core database of an enterprise such as "exceeding, abusing and stealing authority" and so on. It meets every law and regulation on the database audit requirements, and is widely used in the "Government, Financial, Telecom operators, Public security, Energy, Tax, Industry and Commerce, Social security, Transport, Health, Education, E-Business and Enterprise" which are using the database in their business.

DAS Database Auditor supports all those main databases such as Oracle, MS-SQL Server, DB2, Sybase, and Informix. It helps users to enhance the transparency of database monitoring and reduce the cost of manual auditing so as to visualize database running, monitor daily operation, control dangerous operation, audit all activities and trace back security incidents.

Features

Unique Three-layer Audit:
For B / S structure of the application system, the user will access to the database through the WEB server. The traditional database audit system can only audit information of WEB server, but can not recognize the original visitors who send the request. DAS-DBAuditor can trace back the original visitors and request information (such as: the operated URL, client’s IP) through associating application layer access with operation request of database layer access. The users will more accurately position before and after the incident of all layers access and operation request.

Fine-grained Audit:

◆Different from the traditional simple SQL statement restoring, DAS Database Auditor can extract the relevant elements of SQL (such as: users, SQL operations, tables, fields ...) through SQL semantic analyzing to different database.

◆Full Range Real-time Audit: real-time monitoring all database activities from all layers, for example: database operations request launched by applications system; operation request launched by database client tools, etc.

◆The executed SQL commands through long distance command can also be audited and analyzed.

◆Perfect two-way audit: The system not only real-time audit database operations request, but also can completely restore and audit database system returned results.

Precise Behavior Backtracking:
Once the security incident happened, DAS Database Auditor will provide a complete user-defined audit query and audit data based on database objects (like users, tables, fields and recording contents and so on), in this way to getting rid of black box state (Quick hands: who do the operation on the database before and after security incidents? Which operation? When the operation done? Which way to do the operation?)

All position risk control:
◆Flexible strategy customization: Important and risk events are defined according to logged-on user, source IP address, database objects (objects including user, table, field), operation time, SQL command, the number of return records or affected rows, the correlation tables number, SQL implement outcome, SQL implement time and message content.
◆Multi-form real-time warning: When detecting suspicious operation or operation violating auditing rules, the system can notify database administrator by ways of alarming from monitor center, SMS alerts, e-mail alerts, Syslog alerts and so on.
◆Multi-protocol layers of the remote access monitoring: not only monitor the client tools and application layer JDBC, ODBC access but also support real-time monitor and playback function to the remote access to database server (such as: ftp, telnet). These will help positioning query security event, analyze causes, and determine responsibility.

Segregation of Duties:
SOX Act or professional Responsibility standard (such as PCI) clearly proposes staff responsibility segregation, so the system setup a privilege segregation, such as the system administrator is responsible for setting equipment operation; rules configuration operator is responsible for setting relevant database operation rules; Auditor is responsible for checking related audit records and rule violated cases; log manager is responsible for viewing the overall equipment operating log and modifying the rules, and so on.

True playback operation:

DAS-DBAuditor can playback the whole relevant process which customers concerned about, so that customers can see the true input and screen display contents.

The initiative audit mode in the industry:
In addition to providing real-time dynamics of the audit function, DAS-DBAuditor also provides an optional scanning and auditing module to check or audit the unsecure configurations, weak passwords, etc of the database.

Benefits

Integrity: The unique three-layer audit can audit relatively with application layer, middle layer and data layer.
Fine-grained: The auditing rules, behavior searching and risk control are all fine-grained.
Effectiveness: Unique and patented technology can control all kinds of risks in database effectively (attack risks, management risks). Flexible and customized auditing rules satisfy demands of all kinds of internal control and external audit (illegal behavior such as error operation, ultravires action, and malicious operations can be effectively controlled.)
Fairness: The independent monitoring audit work pattern realizes the separation of database management and auditing and ensures the authenticity, integrity, fairness of the auditing results.
Zero Risk: The using of bypass deployment pattern achieves zero-risk without changing the existing network architecture and database configuration.
High Reliability: Provide multi-layer physical protection, power-off protection, self-monitoring and redundant deployment so as to enhance the reliability to 99.9999%.

CONTACT US >>