Policy-driven separation of duties. Policy-based masking ensures that sensitive and personal identifiable information accessed from application screens, packaged reports, development and DBA tools is masked based on a user’s security credentials. For example, the following table illustrates which sensitive elements might be masked based on the function of the viewer:
- DBA: salaries and credit cards
- Outside contract employees: customer names
- Developers: customer PII
Customized. It's easy to tailor the security policy to meet specific regulatory or business requirements. Differentiated levels of access can be granted to application users based on their business roles, whether those users are internal employees, such as human resources personnel, or are part of an external workforce, such as customer service staff in a call center.
Flexible. Masking policies can be defined per column, per source IP, per user or per application. It's possible to choose the masking policy to suit the context and authority of the user.
Consistent Across Platforms. Applying dynamic masking based on security policy provides security consistency across multiple platforms and applications. The proliferation of devices that can access data through the web or cellular networks makes this feature increasingly crucial.
Efficient. Changes in policy require absolutely no changes to application sourcecode or to databases. GreenSQL masking supports legacy applications as easily as ones that were coded yesterday. Security masking is defined once—for all uses, across all platforms. The same database can even be used in both production and development environments.
Easy to install, use and manage. Since GreenSQL does not encroach on the database, there is no need to make changes in database architecture. GreenSQL automatically detects the database and applications environment, including application names, user name and users' IP addresses. Once install GreenSQL is installed, its firewall automatically protects against SQL injections. A single, easy-to-use management interface allows monitoring and management of data security in real time.
Protects MS SQL Server, MySQL and PostgreSQL databases. Web applications using MS SQL Server and MySQL databases will withstand malicious attacks.
Protects Databases in the Cloud. GreenSQL protects Windows Azure SQL Database and Amazon RDS for MySQL and SQL Server.