Click to read the original text
Abstract: Verizon's latest "2015 Data Breach Investigation Report" shows that more than half of the top 500 companies have been hacked. Among them, the data security problem from China is even more shocking. The report shows that companies that are particularly vulnerable to attacks are communication operators, Internet applications, and financial companies that hold a large amount of people's personal information.
According to Verizon's latest 2015 Data Breach Investigation Report, more than half of the top 500 companies have been hacked. Among them, the data security problem from China is even more shocking. The report shows that companies that are particularly vulnerable to attacks are communication operators, Internet applications, and financial companies that hold a large amount of people's personal information.
Protecting the database is one of the most direct and effective ways to ensure data security
Once the data is leaked, the enterprise's information assets will be lost, and the enterprise's reputation will be greatly reduced, which will cause irreparable consequences to the enterprise.
Data security is the lifeblood of a business, an imperative that cannot be ignored. As we all know, most of the data is stored in various databases. Therefore, to ensure the security of data, the most direct and effective way is to ensure the security of the database.
How to protect database security?
Under normal circumstances, we complete the comprehensive protection of database security through four steps: timely alarm, accurate source traceability, important asset protection and report analysis.
Sangfor's Important Milestone in Data Security: Release of Database Security Audit System
As a leading manufacturer of enterprise-level network security and virtualization in China, Xinfujun believes that protecting enterprise data security is our responsibility and mission. In the past, we integrated some database security functions such as SQL injection, database vulnerability, and password brute force cracking into products/systems such as NGAF, IPS, and WAF. Now, in order to better protect database security, Xinfujun has launched a database security audit system product, which comprehensively guarantees the database security of enterprise users, from the alarm and audit of illegal database operations, to the security of database accounts, and to the guidance of security policies:
l More comprehensive and accurate database security rules, timely alerts and audits for illegal operations
深信服数据库安全审计系统具有几十种的数据库安全规则,包括业务系统使用grant、客户端sp_addrolemember 提权、web端sp_addrolemember提权、查询内置敏感表、篡改内置敏感表等,给数据库穿上防弹衣。
l 三层关联,保障非法操作的准确溯源
一般来说,在实际用户与数据库之间,往往隔着一个web系统。深信服数据库安全审计系统可以通过三层关联,将数据库的非法操作越过web系统,直接与非法用户关联起来,保障追溯定位效果。
l 账号安全保护,防止数据库暴库与撞库
数据库中最重要最有价值的一类数据就是用户的账号和密码,黑客获取账号密码最常用的方式是暴库和撞库,深信服数据库安全审计系统的账号安全功能,通过对用户账号认证过程进行基线建模,一旦出现暴库和撞库时间能够及时告警,保护数据库中账号资产安全。
l 丰富实用的报表,数据库安全风险可视、管理更简单:
深信服数据库安全审计系统具有十几种报表,从多种维度分析数据库的安全现状,如:数据库行为趋势报表、SQL响应性能分析报表、SQL语句失败排行报表、SQL语句吞吐量报表、登录失败排行报表等等,都能够为数据库安全策略优化提供更多的数据支撑。不仅如此,用户还可以自定义报表,直接进行拖拽组合,方便灵活,让数据库安全风险可视,让数据库安全管理更简单。
当然,数据安全是一场持久的战争,里程碑只能代表过去。未来,我们将结合网络现状与新技术趋势,完善数据安全体系,不断推出让数据更安全的产品和服务,敬请期待。