Database Lockdown

To address compliance needs, Waltham, Mass.-based Guardium released software solutions for its SQL Guard database security platform. The vendor's new library of compliance-specific reports and tests provide immediate audit trails of database access and ongoing "report cards" of compliance efforts, according to Guardium. The new capabilities have been integrated with Guardium's SQL Guard Security Suite to automate database audit and assessment tasks in line with Sarbanes-Oxley (SOX) and the Gramm-Leach-Bliley Act (GLBA) compliance criteria, including after-hours usage, schema changes, source application access, repeated unsuccessful log-ins and single user/single IP address log-ins. Through the reporting capabilities and a new SQL Guard Database Firewall, organizations can baseline all database access activities and apply policy-based database access control, the vendor claims.

Guardium says that the combined capabilities enable firms to pursue a three-step path for compliance: "Visibility" is provided via compliance-specific auditing reports and continuous assessment tests, which provide automated, instant visibility to the attributes that affect SOX and GLBA compliance; "detection" is afforded by the vendor's SQL PolicyGuard application; and "prevention" of intrusions is enabled by SQL Guard Database Firewall coupled with SQL PolicyGuard.

Anthony O'Donnell has covered technology in the insurance industry since 2000, when he joined the editorial staff of Insurance & Technology. As an editor and reporter for I&T and the InformationWeek Financial Services of TechWeb he has written on all areas of information ... View Full Bio