Oracle Announces Oracle Audit Vault and Database Firewall
Unifies Database Activity Monitoring and Audit Data Analysis with New, Single Streamlined Product
REDWOOD SHORES, Calif. – December 12, 2012
Continuing its commitment to delivering the most complete portfolio of database security solutions for the enterprise, Oracle today announced the availability of Oracle Audit Vault and Database Firewall, the industry’s only product to effectively protect Oracle and non-Oracle databases, by monitoring network traffic and analyzing audit data.
Merging the core capabilities of proven Oracle Audit Vault and Oracle Database Firewall products, the new Oracle Audit Vault and Database Firewall product expands protection beyond Oracle and third party databases with support for auditing the operating system, directories and custom sources.
Delivering Oracle Audit Vault and Database Firewall in a new software appliance-based platform accelerates enterprise-wide deployments and simplifies operations.
Oracle Audit Vault and Database Firewall serves as a critical detective and preventive control to protect against the abuse of legitimate access to databases responsible for almost all data breaches and cyber attacks.
Oracle Database Security solutions provide customers with the most comprehensive and advanced security offerings that help reduce the costs and complexity of securing their business information across the enterprise.
Expanded Protection and Effective Auditing
• Key features of the new Oracle Audit Vault and Database Firewall product include:
Database Activity Monitoring and Firewall: SQL Traffic monitoring of all certified versions of Oracle and third party databases including Microsoft SQL Server, SAP Sybase, IBM DB2, and MySQL; a unique approach to SQL grammar analysis to reduce millions of SQL statements into “clusters” for unrivaled accuracy and scalability; and easy to create whitelists, blacklists and exception lists to better detect unauthorized database activity including SQL injection attacks.
Expanded Enterprise Auditing: Capabilities to collect, consolidate, and manage native audit and event logs from Oracle and third party databases; additional support for collecting and consolidating audit and event logs from Microsoft Windows, Microsoft Active Directory, Oracle Solaris and Oracle Automatic Storage Management Cluster File System, as well as XML and table-based audit sources through XML-based Audit Collection Plugins.
Consolidated Reporting and Alerting: Consolidated, centralized repository for all audit and event logs to be analyzed in real-time against pre-defined policies; unprecedented visibility into stored procedure execution, recursive SQL and operational activities; dozens of built-in reports to meet compliance requirements; and powerful alerting capabilities including multi-event alerts and alert thresholds.
“Oracle Audit Vault and Database Firewall is not just an integration of two existing products,” said Vipin Samar, vice president of Database Security Product Development, Oracle. “This is a new product that provides a unified monitoring and auditing platform that goes beyond databases. Customers no longer have to choose between security and compliance – they can now have a product that lets them achieve both easier and at a lower cost.”
“We currently use Oracle Database Firewall to secure Oracle and SQL Server databases and ensure we protect sensitive data in our environment,” said John-Thomas Gaietto, manager, IT Security & Compliance, SquareTwo Financial. “We are excited to see Oracle merge the capabilities of two products into a single unified product that provides us the security intelligence platform we need to run our business.”
"Combining both Oracle Audit Vault and Oracle Database Firewall is a logical step - it combines the real-time analytics and the ability to do ex-post and forensic analytics on database activities," said Martin Kuppinger, founder and principal analyst at Kuppinger-Cole. "Oracle also raises the bar with its broad support for heterogeneous database environments. We recommend evaluating this new offering as the baseline solution for database security."