Home

Database Security Gateway

Usage Assessment, Audit and Protection for Business Applications and Databases

Efficient Operations, Low Ongoing Maintenance

Eliminates Manual Configuration and Tuning

The detection of unauthorized database user behavior requires the creation of detailed baseline profiles that may contain thousands of elements and change on a daily basis. It is simply not cost effective or realistic to expect security staff to create and maintain detailed profiles for each user, or even each group.

Imperva's Dynamic Profiling simultaneously minimizes risk and total cost of ownership by eliminating the need for manual user profile configuration and tuning. SecureSphere applies adaptive learning algorithms to automatically develop and adjust profiles as behavior changes over time, while administrators still have full access to modify or create custom profiles as desired.

Database Security Management and Reporting - Browser, MX Management Server, SecureSphere Database Security Appliances Click to enlarge

Centralizes Data Security Management

SecureSphere can be deployed as a standalone appliance or distributed across large data centers. The SecureSphere Management Server delivers centralized configuration, monitoring, and reporting, while hierarchical organizational groupings, granular administrative permissions, and a unique task-oriented workflow streamline management of large enterprise and ASP environments.

Maintains Separation of Duties

SecureSphere presents database information in a format that is accessible to non-database administrators, enabling security or compliance personnel to maintain separation of duties between security, audit, and database administration if desired.

Business Relevant Reporting


SecureSphere Database Protection Screenshot - Alerts by Severity Click to enlarge

Flexible reporting options allow administrators to create their own security reports, aiding organization specific security analysis.

These reports focus both on specific regulatory criteria, and on criteria relevant to business applications such as SAP and Oracle EBS. No other database security solution delivers “out-of-the-box” capabilities for addressing audit questions relevant to specific regulatory issues and business applications.

SecureSphere's robust reporting framework includes a wealth of pre-defined reports, while offering complete flexibility for creating custom reports and templates appropriate for unique reporting situations, and integrating the analytical tools necessary for documenting compliance relevant to specific business environments.

Extended Security for Web-based Business Applications

Web-based business applications gain advanced protection against external threats by extending SecureSphere with the SecureSphere Web Application Firewall. The Database Security Gateway and Web Application Firewall work together in real time to defeat SQL injection, parameter tampering and other Web attacks with unparalleled accuracy by correlating database violations with Web violations, while the SecureSphere Management Server unifies management of mixed Web and database deployments. Combined, these products deliver the only complete security solution for business application data available.