GreenSQL Product Features

Key features provided by GreenSQL solutions:

1. Intrusion detection prevention (IDS/IPS)

GreenSQL monitors database activities for unauthorized operations, from both known users and potential hackers, and prevents illegal access. Checks signatures and performs pattern evaluations to block malicious and inappropriate operations in real time. GreenSQL Applies an IDS/IPS to alert and block queries which match a risk profile created previously.GreenSQL Risk profile helps you to build your own administrative command profile determines which queries to log in to the Intrusion log. Major part is the SQL Injection alerting and blocking system which enables you to alert and block of any SQL injection attempts. The detection of SQL injection attempts is based on GreenSQL "Risk engine" module.

2. Learning mode

Learning mode automatically generates a full activity rule-based policy for each database in accordance with its specific behavior. While learning the database specific behavior from a specific defined source GreenSQL will create a group of patterns (Query Group). This group can then be used as the white list of the Firewall Policy.

3. Database firewall

Database Firewall Provides three policy options:  Learning Mode Policy automatically created security policies Firewall Policy custom rules based on user-defined parameters (Source IP, db user, application name and schedule) query or table based. Risk-Based IPS/IDS Policy real-time intrusion detection and prevention system.

4.Separation of Duties

Enforces access control and separation of duties, where DBAs only administrate and user's only access data. With GreenSQL you will be able to define which source could view, modify, delete, administrative the database information.  

5.Advanced Risk Scoring Matrix

Sophisticated risk scoring matrix to help identify and block suspicious commands based on known and unknown user and system behaviors, probability calculations, and industry-leading knowledge of hacking techniques.

6. Database front-end security

GreenSQL is installed as a front end to databases, fully hiding and securing them. Your database application and database operating system remain completely hidden from any remote access.

7. Advanced user interface

GreenSQL’s provide secure web-based GUI console simplifies database security set-up and configuration. The GUI provides an intuitive system dashboard that enables you to deploy database security very easily and quickly.

8. Real-time database protection

Identifies, warns of, and prevents unauthorized attempts to access databases in real time. GreenSQL applies exception detection and policy-based controls to prevent intrusions by hackers and end users, as well as unauthorized access by privileged insiders. Any unauthorized attempt alerts the system administrator.

9. Database caching

GreenSQL provides a smart caching solution, which automatically responds to application SQL query behavior patterns and dramatically increases database performance. The caching feature can be enabled or disabled by database and by query to provide full caching control.

10. Database Activity Monitoring

GreenSQL database activity monitoring keeps you on top of security threats, malicious software and exploits, threats from company insiders and more. It keeps you informed of suspicious transactions in real time, allowing you to take immediate action to maintain database security. And it documents the steps you've taken to ensure your data's security for regulators.

11. Encrypted communication over SSL

Provides support for SSL encrypted communication from any application to GreenSQL and SSL encryption to the back-end database. During the SSL configuration, organizations can choose to use their own certificates for data encryption and validation. 

12. Alerts Module

GreenSQL provides you the option to be alerted in response to specific, pre-configured alert types. The Alerts function is designed to allow specified contacts to receive periodic emails of selected event types, such as GreenSQL System changes, Audit events, Firewall events, and Intrusion events. :

13. Virtual patching

GreenSQL Virtual Patching Automatically protects against newly discovered 0-day database vulnerabilities and will automatically monitor, alert and block newly discovered database system exploits. Your database will not be exposed until the database application or operating system vendor releases the required fixes and mitigation plans.

14. Advanced auditing

Database Activity Monitoring. Independently monitors and analyzes your database activity to alert about unauthorized activities. Using  Advanced Auditing option, GreenSQL provides a full audit of all sensitive tables, including a “before and after” view of all changes and who made them. It helps companies demonstrate compliance with industry and government regulations, including Sarbanes-Oxley (SOX), the payment card industry data security standard (PCI DSS), the Gramm-Leach-Bliley Act (GLBA), and Basel II.

15.User rights management

Each GreenSQL administrator account belongs to an administrative profile. The profile divides GreenSQL’s features into access control categories to which you can grant List, View, Create, Edit or Delete access. Each GreenSQL administrator can have a unique profile with limited GreenSQL access.

16. Advanced reporting

Offers flexible and customizable reports on intrusion attempts, risk assessments, suspicious events, audit information, SQL query usage, and more. The report system will assist you to comply with international security standards, such as Sarbanes-Oxley (SOX) and the Payment Card Industry Data Security Standard (PCI DSS).

17. Masking

GreenSQL’s masking feature enables you to mask sensitive information from non-privileged users. GreenSQL Solution provides a real-time masking and ensures that database users are exposed only to approved information. Masked data is generated in real time and is not stored on the database, thereby preserving data integrity.

18. High Availability

When continuity is crucial for your organization, GreenSQL can be configured as a high availability solution using two GreenSQL installations. One acts as Master and one as Slave, in active or passive mode respectively. To the network, this GreenSQL cluster appears to be a single GreenSQL installation, processing SQL traffic and providing Unified Database Security (UDS) services.