Database Firewall from Oracle - Block SQL Injection on Oracle MSSQL DB2

Tuesday, February 15, 2011

Oracle has released its first database firewall designed to protect valuable systems from attack and disruption.
The Oracle Database Firewall has been developed using technology acquired from its purchase of Secerno last year. It allows real-time monitoring of intrusions, SQL attacks and any attempt to misallocate access privileges.
"Evolving threats to databases require enterprises to look at new security solutions,” said Vipin Samar, vice president of database security at Oracle.
“Oracle Database Firewall offers organizations a first line of defense that can stop internal and external attacks from reaching databases. Easy to deploy and manage, Oracle Database Firewall helps reduce the costs and complexity of securing data across the enterprise without requiring any changes to existing applications and databases.”
The firewall uses a technology Oracle calls SQL grammar analysis to detect attacks on the database by monitoring and classifying millions of SQL statements and looking for abnormal behavior. The system also uses both blacklists and whitelists to minimise threats.
“It's an extremely crowed market; it's filled with vendors with more experience in this market than Oracle,” Charles King, principle analyst for Pund-IT told
“This is emblematic of the type of control Oracle is trying to extend. If you're a dedicated Oracle solution user then getting all your kit from one source can make sense but not for most people.”
The firewall works with Oracle Database 11g and below, IBM DB2 for Linux, Unix and Windows, Microsoft SQL Server 2000, 2005 and 2008 and Sybase.

Read more:


  © Blogger templates Newspaper by 2008

Back to TOP