News
Blogs
Shark Bait
Knowledge Centers
Opinion
Webcasts
Video
Podcasts
IT Careers
White Papers
Computerworld Reports
Zones
Case Study Library
RSS Feeds
Events
Industry
This Week in Print
Print Subscriptions


Ads by TechWords

See your link here


Eric Ogren's picture
Eric Ogren

Security Impact

More posts | Read bio

October 25, 2006 - 12:34 P.M.

Help in handling Oracle vulnerabilities

1 comment

If you run parts of your business on Oracle databases, and who doesn’t, then you better be prepared for Oracle’s trend of security announcements to continue for quite a while. No band-aid fixes are going to help and it will take time for their enhanced security engineering processes to take effect.

It is very common for large organizations to have hundreds of Oracle databases floating around the corporate network with varying amounts of confidential data and security demands. Time to be sure you have the management tools to discover instances of databases, and an Oracle application vulnerability scanning capability to regularly assess the security posture of your most sensitive applications. Those are the basics you should have in place so you can get the most out of your activity monitoring or security risk management tools.

These are the vendors I’d suggest you take a look at for monitoring the health of your Oracle databases:

Application Security is among the best of the Oracle vulnerability scanners out there. Furthermore, AppSec will actively scan your entire network to help you discover where all of your Oracle databases are. Additional products support database auditing and database encryption.

Imperva offers a top shelf database vulnerability scanner as part of its gateway product, and can alert you to all the discovered destinations of SQL traffic its passive appliance can see. Its activity auditing capability is excellent at tracing individual user transactions that otherwise might be cloaked by application servers.

IPlocksmarkets a database auditing product that will keep you up to date with the vulnerabilities that are exposed in your Oracle databases. IPlocks also features software that peers into the database for granular reports on privileged user activity including changes to schemas and stored procedure calls.

After your database assessment capability is in place, then you can monitor database transactions. Database auditing products, such as Embarcadero, Guardium, Lumigent, Symantec, and Tizor have discovery features and strong activity auditing capabilities to help you with detecting changes and automating compliance. Symantec’s entry is new to the market and has the best upside potential to integrate security into your datacenter management process.

What People Are Saying

Add new comment

Your article about Oracle

Submitted by Adrian Lane, CTO on November 20, 2006 - 7:27 P.M.

Your article about Oracle security options highlights the challenges many customer’s face when evaluating solutions. A simple concept like ‘Database Security’ can conjure up so many different ideas for different people. Each of the vendors you’ve included in your analysis covers some portion of Auditing, Monitoring, Vulnerability Assessment and each vendor approaches the problem in a slightly different way. As a vendor that addresses Auditing, Monitoring, and Vulnerability Assessment, I know how difficult it can be to provide guidance to customers in this area.
Product capabilities aside, the appropriateness of any solution is dependent on the customer’s environment, business challenges, and the types of IT controls they are trying to implement. I want to encourage your readers to dig into the products and find the one that is best for their needs.

Report this comment

Related Posts

ACEs ace Turing test? Errr, no.
Do Railhead right or don't deploy until it IS right
Need to discover some open source enterprise apps for your business? You should have been at LinuxWorld
Surveillance video: More than just watching

Today's Top Stories

Droid launch draws tech-savvy crowd
AMD graphics chip shortage hits PC vendors
Intel readies 2.3GHz, 3.5GHz WiMax support with Kilmer Peak
First iPhone worm spreads Rick Astley wallpaper
Mozilla fixes Firefox crash bug
Update fixes iPhone sync problem with Windows 7 for some
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures
IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.