SEARCH RESULTS
 
Showing 1-10 of 284 records
 
Expand article

Understanding and Selecting a Database Activity Monitoring Solution: Part 5, Advanced Features

2008-03-31 19:26:22 by rmogull in securosis.com
 
...databases, the reality is we really dont always know whats inside of them. Many of our systems grew organically over the years, some are managed by external consultants or application vendors, and others find sensitive data stored in unusual locations. To counter these problems, some database activity monitoring solutions are adding content...
 
Tags: database, database activity, application level, application, tools, change management tools, application activity, database queries, queries
 
 
 
 
Expand article

Database Connections and Trust

2008-06-19 04:10:01 by alane in securosis.com
 
...database. You supply the user name and password, establish the connection object and run your query. Very simple, easy to use and essential component to web applications The database itself has very little awareness of where the application that made the connection is located. It does not necessarily know the purpose of the application. It...
 
Tags: application, web application security, application developer, application project, application security, database, web application connects, application connection, database activity
 
 
 
 
Expand article

Database Connections and Trust

2008-06-19 04:10:01 by alane in securosis.com
 
...database. You supply the user name and password, establish the connection, and run your query. A very simple, easy to use, and essential component to web applications The database itself has very little awareness of where the application that made the connection is located. It does not necessarily know the purpose of the application. It may...
 
Tags: application, web application security, application developer, database, application project, application security, web application connects, database activity, database altogether
 
 
 
 
Expand article

Introduction To Database Encryption

2008-02-13 02:51:41 by rmogull in securosis.com
 
Database encryption is like a home repair project- either its really easy and goes exactly as planned, or about five minutes in you realize you might not want to make any weekend plans for the next 2-3 years, and perhaps you should take a trip to the flower store before trying to explain why your family will be living with exposed wall studs and...
 
Tags: database encryption, database, divide database encryption, database activity, encryption, discrete data, data, data encryption, columnfield encryption
 
 
 
 
Expand article

How to Do Database Logging/Monitoring "Right"?

2007-12-13 11:26:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...database logging/auditing/monitoring and log analysis right. The key choice many seem to struggle with for database auditing and monitoring is reviewing database logs vs sniffing SQL traffic off the wire . Before proceeding, please look for more background on database log management , auditing and monitoring in my database log management...
 
Tags: database, analyze database logs, database logs, database log review, database performance impact, database configuration, performance impact, database log management, log management
 
 
 
 
Expand article

Understanding and Selecting a Database Activity Monitoring Solution: Part 6, The Selection Process

2008-04-01 23:06:40 by rmogull in securosis.com
 
...Database Activity Monitoring. Today well cover the selection process For review, you can look up our previous entries here Part 1 Part 2 Part 3 Part 4 Part 5 Define Needs Before you start looking at any tools, you need to understand why you might need DAM how you plan on using it, and the business processes around management, policy...
 
Tags: selection process, process, determine protection, determine, specific, specific technical features, determine compatibility, determine technical requirements, technical requirements
 
 
 
 
Expand article

Understanding and Selecting a Database Activity Monitoring Solution: Part 4, Alerts, Workflow, and Reporting

2008-02-29 20:06:08 by rmogull in securosis.com
 
...Database Activity Monitoring. Were going to talk about alerting, workflow, and reporting In my previous post we discussed central management, including policy creation . One of the key advantages of DAM over passive auditing and logging solutions is the ability to define policies for active alerts and manage remediation. While policies are...
 
Tags: database, database activity, activity, tools, dam tools, proactive security tools, security tools, alerts, technical reports
 
 
 
 
Expand article

The Future Of Application And Database Security: Part 2, Browser To WAF/Gateway

The Article has images
2008-06-27 20:12:42 by rmogull in securosis.com
...Database Monitoring and Protection (ADMP), which I define as Products that monitor all activity in a business application and database, identify and audit users and content, and, based on central policies, protect data based on content, context, and/or activity Browser Troubles As we discussed in part 1 , one of the biggest problems in web...
 
Tags: application, application controls, application performance, web application gatewaywaf, application security services, business application, application activity, web application gateway, web browsers wafs
 
 
 
 
Expand article

Webcast: Database Security; Preventative Controls for Separation of Duties

2008-03-24 22:33:06 by rmogull in securosis.com
 
...Database and Security Administrators , and registration is open You may have noticed Im spending a lot of time on this theme of crossing the lines between security and database administration. Weve found that most security types arent the most experienced with databases, and DBAs, while perhaps technically proficient with aspects of database...
 
Tags: security, database, database security, security features, database administration, controls, security administrators, preventative controls, duties
 
 
 
 
Expand article