Database Security
Ready-to-Use Database Security
GreenSQL Database Security protects databases from SQL injection attacks unauthorized access, data theft and abuse. GreenSQL’s database security enforces database firewall policies and gives full control of who accesses sensitive information. Enforcing Separation of Duties using GreenSQL Database Security is as easy as 1-2-3.
Download greensql for free!
- Stops SQL Injection attacks on web applications
- Blocks unauthorized database access with real time alerts
- Separates application database access privileges from administrator access
- Provides a complete event log for investigating database traffic and access
- Ensures successful implementation with 24/7 support
Protects websites and databases from SQL injection. GreenSQL's engine acts as a reverse proxy, filtering all traffic in and out of the database. It identifies malicious attacks by comparing every query’s structure with its signature bank of known attacks. Threatening queries never reach your database for execution.
Controls access to sensitive information. GreenSQL prevents information theft and to boost compliance with regulations such as PCI-DSS and SOX. GreenSQL's table-based firewall allows definition of users according to their authority to run administrative commands, view information or delete it. Not only are users defined, but it's possible to define from which IP address queries may be submitted. User rights management allows organizations to separate user rights by function and stop internal information leaks. GreenSQL cloaks the entire database, allowing only indirect access, and gives further protection by enabling masking of specific sensitive data, hiding it from unauthorized view.
Easy to install, use and manage. Since GreenSQL does not encroach on the database, there is no need to make changes in database architecture. GreenSQL automatically detects the databases and applications environment, including application names, user names and user IP addresses. Once GreenSQL is installed, its firewall automatically protects the database from SQL injections. A single, easy-to-use management interface provides monitoring and management of data security in real time.
Protects MS SQL Server, MySQL and PostgreSQL databases. Web applications using MS SQL Server, MySQL and PostgreSQL databases will withstand malicious attacks. In fact, GreenSQL is the ONLY solution (Open or Closed source) which provides a database firewall solution for PostgreSQL databases.
Protects databases in the Cloud. GreenSQL protects Windows Azure SQL Database and Amazon RDS for MySQL and SQL Server.
Protects your financial, identity and intellectual property in real time. Data theft needs to be prevented, not just detected. A report on the theft of valuable data is of little use after the theft has already occurred. GreenSQL proactively prevents the theft from taking place and continuously protects the valuable assets stored in your databases.
GreenSQL is fully scalable. All features can be controlled using one easy-to-use management interface, so GreenSQL scales according to business needs. With a wealth of available installation options, GreenSQL can be configured as a dedicated solution protecting a single database, or to monitor and protect multiple databases simultaneously.
Accelerated database performance. GreenSQL’s patented caching mechanism goes far beyond its original goal of compensating for potential database latency. GreenSQL significantly accelerates database performance, showing the efficiency rate on the caching efficiency dashboard.
Hardware Requirements:
Supported Operating Systems:
Supported Browsers:
Database Firewall provides three policy options:
- Learning Mode Policy: automatically created security policies
- Firewall Policy: Custom rules based on user-defined parameters, query- or table-based
- Risk-Based IPS/IDS Policy: Real-time intrusion detection and prevention
Learning Mode. Automated learning enables organizations to allocate a period of time for the security system to learn authorized access patterns. The database interactions during this time serve as a whitelist of rules for the GreenSQL Security engine.
SQL Injection Protection. The GreenSQL SQL Injection engine applies exception detection to prevent hackers from carrying out SQL Injection attacks. The system provides a web-based intuitive and flexible SQL Injection policy framework that enables users to create and edit their SQL Injection protection policy.
Full Separation of Duties. GreenSQL enforces access control and separation of duties, where DBAs only administrate and users only access data.
IPS / IDS. The Intrusion Detection & Protection system allows enforcement of blacklist rules in real time, to detect and prevent intrusion, such as SQL Injection. The powerful Risk-Based Policy interface enables organizations to fine tune database security with highly granular access profiles.
Real-time eMail Alerts. GreenSQL provides alerts for for specific, pre-configured events and triggers. The alerts function is designed to allow specified contacts to receive periodic emails of selected event types, such as GreenSQL System changes, Audit events, Firewall events, and Intrusion events.
Advanced Reporting. The GreenSQL flexible and customizable reports document intrusion attempts, risk assessments, suspicious events, audit information, SQL query usage, and more. The reporting system can assistin complying with international security standards such as Sarbanes-Oxley (SOX) and the Payment Card Industry Data Security Standard (PCI-DSS).
