Oracle Audit Vault and Database Firewall

2012: Oracle released Audit Vault and Database Firewall

The Oracle corporation announced in the winter of 2012 release of Oracle Audit Vault and Database Firewall — a product for protection of Oracle databases and other suppliers using monitoring of network traffic and data analysis of audit.

The product Oracle Audit Vault and Database Firewall integrates key features of the products Oracle Audit Vault and Oracle Database Firewall and at the same time expands possibilities of data protection out of Oracle databases and other suppliers due to support of audit of operating systems of directories and the user data sources of audit.

"Oracle Audit Vault and Database Firewall is not just integration of two existing products, it is a new product. It provides the unified platform of monitoring and control which opportunities go beyond databases — Vipin Samar, the vice president of Oracle for security technologies of databases emphasized. — Clients should not select between products for security and products of control over the implementation of statutory requirements any more. Now they can purchase one solution which will allow to solve both problems at the same time, and it is simpler also with smaller costs".

According to developers, delivery of Oracle Audit Vault and Database Firewall in the form of the new hardware-software platform accelerates deployment at the enterprise and simplifies transactions. The solution serves as important means of the preventive and revealing control for protection against unauthorized access to databases. The area of responsibility of Oracle Audit Vault and Database Firewall extends almost to all methods of a compromise of data and types of cyber attacks.

Oracle Database Firewall is a part of a complex solution package of Oracle for security of databases, supplementing Oracle Advanced Security and Oracle Database Vault. In general the complex of the products Oracle Database Security provides to clients the advanced solutions for information security support which help to reduce costs and to simplify corporate systems of protection of business information.

Key features of the new product Oracle Audit Vault and Database Firewall include: Database Activity Monitoring and Firewal; Expanded Enterprise Auditing; Consolidated Reporting and Alerting.

So, Database Activity Monitoring and Firewall provides monitoring of traffic of SQL queries for all certified versions of Oracle databases and other suppliers, including the Microsoft SQL Server, SAP Sybase, IBM DB2 and MySQL. The technique of the grammatical analysis of SQL queries allows to reduce the number of the analyzed data and to present millions of arriving SQL queries in the form of clusters. As noted in Oracle, such opportunity allows to reach the high accuracy and scalability and also to simplify creation of lists of exceptions, white and black lists for more effective identification of unauthorized access to databases, including the attacks of type of SQL injections (SQL injections).

In turn, Expanded Enterprise Auditing gives opportunities of collecting, consolidation and data management of magazines of the built-in audit and registration of events of Oracle databases and other suppliers. Collecting and consolidation of magazines of audit and registration of events from the Microsoft Windows, Microsoft Active Directory, Oracle Solaris and Oracle Automatic Storage Management Cluster File System file systems and also other data sources of audit with XML - and tabular structure through the connected software modules of Audit Collection Plugins based on XML is in addition supported.

At last, Consolidated Reporting and Alerting provides the consolidated centralized repository for the operational analysis of all records of magazines of audit and registration of events on the basis of established policies and the unprecedented level of control of accomplishment of stored procedures, recursive SQL queries and system transactions. Besides, Consolidated Reporting and Alerting allows to execute more than ten the built-in reports for observance of regulatory requirements to the reporting and provides the functionality of the warning system including, among others, possibilities of the notification on several events and managements of threshold values of notifications.

"Consolidation of two solutions Oracle Audit Vault and Oracle Database Firewall is a logical step as allows to combine processes of operational analytics of activity in databases in real time with opportunities of the analysis of exceptions (forensic analysis) and risk analysis taking into account already taken place events (ex-post analysis) — Martin Kuppinger, the founder and the top analyst of Kuppinger-Cole company noted. — Oracle rises by new height, providing broad support of heterogeneous environments of databases. We suggest to consider Oracle Audit Vault and Database Firewall as the main solution for protection of databases".

2015: Oracle Audit Vault and Database Firewall received the FSTEC certificate

On April 29, 2015 Oracle announced obtaining the FSTEC certificate of Russia in confirmation of conformity of Oracle Audit Vault and Database Firewall to security requirements of information.

According to the certificate, Oracle Audit Vault and Database Firewall 12.1.2 there is a software tool of general purpose with the built-in information security tools which are not containing the data which are the state secret, implementing functions of identification and authentication, access control and registration of events of security.

By means of use of highly effective mechanisms of the grammatical analysis of SQL expressions, Oracle Audit Vault and Database Firewall reliably controls requests and provides zero level of false operations.

"In the modern world where data are one of the main archives of most the companies, it is necessary to pay them to safety at most of attention. Oracle Audit Vault and Database Firewall is a flexible and reliable solution for preventive protection of databases against unauthorized access. The new certificate continues our long-term program of local certification of security protections and expands possibilities of the Russian clients at creation of information systems" — Andrey Gusakov, the head of group of information security of technology consulting, Oracle CIS noted.