United Card Service implements the system of protection of databases

On April 10, 2014 (UCS) and Jet Infosystems company announced JSC United Card Service project completion on creation of a system of protection of the KOKK databases (D) on the basis of the Imperva SecureSphere system.

Project Tasks

The policy of the customer provides use of the most modern technologies and systems aimed at providing the high level of protection of critical data of the company in information security fields. The project on creation of a full-fledged system of providing a continual loop of protection of critical data became one more step to strategy implementations of the company to information security fields. The Jet Infosystems company became the partner in the project.

Project Progress

The first stage of the project - audit of a segment of IT infrastructure responsible for data processing of payment cards, in particular, the payment applications participating in processes of storage, transfer and data processing of payment cards, information security tools, ensuring safety of the environment of these payment cards, network infrastructure, the integrated processes and procedures of information security.

As a result of audit selected subject to protection – servers DBMS Oracle and Informix, created requirements to the system of protection, including structural. Were composition of protection:

• high-performance gateways of monitoring Imperva X6500,
• servers of management Imperva M100,
• software agents and server of archive storage.

All components of a hardware and software system are collected in a failover cluster.

Experts of the company "Jet Infosystems" configured the basic security policies intended for identification of the attacks on servers DBMS, unauthorized changes of access rights, data access of payment cards, accomplishment by users of exclusive commands, etc. Developed a number of the customized security settings in the field of User Rights Management. In particular, the compensating measures aimed at control of leak of confidential information as a result of unauthorized expansion of access rights of the users to databases placed on the Informix servers are implemented. In the course of implementation experts revealed the needs for development of the additional functionality necessary for complete implementation of project requirements regarding protection DBMS Informix.

Project Results

In a system the intellectual functionality of profiling of actions of users is implemented: the solution remembers standard profiles of the user activity in databases and automatically notifies system administrators of protection of a DB in the cases which are beyond the user powers. For ensuring control of actions of privileged users and functioning state of a system in general system politicians of monitoring (notifications in case of change the politician, emergence of errors are implemented at the administrator's input in the management console, etc.). Integration of the existing SIEM solution into the Imperva system is made. As a result incident management is exercised on a centralized basis from the single console.

The functionality of a system provides a possibility of operational creation of several types of the reporting: on violation of security policies, audit of actions of users, results of processes of search of a DB, etc. Besides, a number of additional reports is implemented: about search results and classification of data, the analysis of vulnerabilities and access rights, about not successful attempts of authentication, etc.

A system automates all processes of protection of the critical information which is processed in databases of the processing company (from search and inventory of database servers, the analysis and classification of the data which are stored in them to the analysis and control of providing access rights, the user activity in databases, use of security policies, etc.). With implementation the DB security level, and time necessary for investigation of incidents of information security increased, it was reduced in more than 6 times.

"We received the convenient tool for ensuring confidential information protection in databases from internal and external threats. The solution has fault tolerance and a stock of performance that allows if necessary how to raise the detail level of settings of audit and security, and to scale the system of protection for security of confidential information in databases of other applied systems", − Alexander Dmitriyev, the project manager of implementation Imperva from KOKK Ltd noted.

"The achieved results allow to reveal and register timely the unsafe transactions made with confidential information of clients. The system of protection of a DB is designed taking into account features of the computer network of a processing center that gives the chance periodically to scan resources of network and to reveal the known vulnerabilities and the DBMS unsafe settings. The solution is built completely in process of security and monitoring of incidents of information security due to integration with the available SIEM system, and the staff of KOKK Ltd was trained to work with Imperva SecureSphere", − Elman Beybutov, the head of protection of a DB and SOC of Information Security Center of Jet Infosystems company told.

"Throughout the history the Imperva company steadily takes the leading positions in the field of the systems of protection of DBMS, but recognition of quality of our products by clients was and remains the best indicator for us. This project is evident demonstration of opportunities of our solutions as all arsenal of protective measures of the products SecureSphere Database Activity Monitoring was involved. The partner – Jet Infosystems company − showed high professionalism regarding audit of business processes, consulting and thin setup of a system. Projects of such level as in KOKK company, once again confirm reliability and readiness of our products for implementation in networks of big corporate customers, including in the conditions of high loading of IT systems", − Alexander Shakhlevich, the sales manager of Imperva company in Russia told.