OPSEC Partners

SQL-Guard, a new security layer for the IT organization, intercepts database access requests and enforces database security policies at the network gateway. SQL-Guard analyses data streams directed towards the database and detects database intrusions in real time. When an intrusion occurs, SQL-Guard provides alerts and denies the access.

Key features include:

• Monitoring of all database activity that crosses the firewall
• Protection against database security breaches
• Centralized management of database authorizations
• Generation of management reports

Key benefits of SQL-Guard:

• Provides the extra protection needed when exposing databases for e-business
• Minimizes the need for database replication
• Shortens the security code review process
• Provides one focal point for e-business database security

SQL-Guard allows you to differentiate between internal users and outsider users. SQL-Guard also supports group authorization levels.

By tightly monitoring and managing external database activities, SQL-Guard fulfils the critical mission of protecting your database from being manipulated or hacked.

SQL-Guard was developed as a CVP (Content Vectoring Protocol) server, to enable better security for Oracle protocol data streams that passes through Check Point FireWall-1. Using the CVP API, SQL-Guard monitors the data stream and can stop unauthorized SQL requests.

SQL-Guard uses the Event Logging API (ELA) to send tracking events and alerts. In this way, the Check Point FireWall-1 log and log viewer are used as a single focal point for both regular FireWall-1 events and for extended security events generated by SQL-Guard. SQL-Guard provides important information regarding security violations in Oracle protocol data streams, including violations related to source databases, destination databases, user identities and SQL request formats.