Upcoming Events

Where the Cloud Touches Down: Simplifying Data Center Infrastructure Management

Thursday, July 25, 2013
10:00 AM PT/1:00 PM ET

In most data centers, DCIM rests on a shaky foundation of manual record keeping and scattered documentation. OpManager replaces data center documentation with a single repository for data, QRCodes for asset tracking, accurate 3D mapping of asset locations, and a configuration management database (CMDB). In this webcast, sponsored by ManageEngine, you will see how a real-world datacenter mapping stored in racktables gets imported into OpManager, which then provides a 3D visualization of where assets actually are. You'll also see how the QR Code generator helps you make the link between real assets and the monitoring world, and how the layered CMDB provides a single point of view for all your configuration data.

Register Now!

A Network Computing Webinar:
SDN First Steps

Thursday, August 8, 2013
11:00 AM PT / 2:00 PM ET

This webinar will help attendees understand the overall concept of SDN and its benefits, describe the different conceptual approaches to SDN, and examine the various technologies, both proprietary and open source, that are emerging. It will also help users decide whether SDN makes sense in their environment, and outline the first steps IT can take for testing SDN technologies.

Register Now!

More Events »

Subscribe to Newsletter

  • Keep up with all of the latest news and analysis on the fast-moving IT industry with Network Computing newsletters.
Sign Up

Rolling Review: Guardium SQL Guard


Download a Free PDF at NWCReports.com


Is it time to bite the compliance bullet and get a grip on what's going on within your database environment? Look no further than the SQL Guard 6.0 database extrusion prevention appliance. Guardium has thrown in practically every feature you'll need to lock down sensitive data—all that's missing is a caring, sympathetic auditor. What, you thought this was a miracle box?

This article is the fourth of a series and is part of NWC's Rolling Review of extrusion-prevention systems. Click on that link to go to the Rolling Reviews home page to read all the features and reviews now.

SQL Guard came to our University of Florida Real World Lab on a beefy Dell 1U server that can be deployed either inline or out-of-band. In either scenario, it acts as a true extrusion prevention system, dropping traffic when inline or sending TCP reset packets to the attacker and database server when out-of-band. We had no problems during testing with either placement option. Day-to-day management was a breeze thanks to a thorough, well-designed and attractive Web interface that shows off the maturity of the 6.0 release. As intuitive as we found the Web interface, the sheer num-ber of features available in each screen sometimes left us thumbing through the man-ual. Once you learn the ropes, this will be one formidable weapon against data theft.

SQL Guard supports Oracle 8i/9i/10G, Microsoft SQL Server 2000/2005, Sybase ASE/IQ, and IBM DB2 and Informix. The primary method of analyzing database ac-tivity is through monitoring network traffic to the database servers. This works great when your topology supports the addition of a network appliance. For environments where this is a problem, say due to layout or use of virtualization, where the applica-tion and database servers reside on the same physical server, Guardium joins Imperva and RippleTech in supporting database activity monitoring with its S-TAP software probe. S-TAP can monitor both network-sourced database activity and local console activity and supports HP-UX, Solaris, Linux, AIX, OSF1 and Windows OSes.

The Upshot

Participants in this Rolling Review must be capable of monitoring for, de-tecting, and when possible preventing data extrusion from database servers. Guar-dium's SQL Guard 6.0 has the capabilities to meet all our requirements.
Currently, native database logging capabilities cannot provide the in-depth analysis and auditing capabilities found in specialized DBEP products. Database extrusion prevention systems may monitor data returned by SQL queries, watch for anomalous behavior, or both.
SQL Guard performed at the top of the DBEP class, with task automation, data classification and reporting capabilities that stand out from other products we've tested. Its deployment options and wide database support should make it a fit for most enterprises.

Guardium SQL Guard

Page:  1 | 2345  | Next Page »

Related Reading

More Insights

Network Computing encourages readers to engage in spirited, healthy debate, including taking us to task. However, Network Computing moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Network Computing further reserves the right to disable the profile of any commenter participating in said activities.

Disqus Tips To upload an avatar photo, first complete your Disqus profile. | Please read our commenting policy.
Vendor Comparisons
Network Computing’s Vendor Comparisons provide extensive details on products and services, including downloadable feature matrices. Our categories include:

Research and Reports

Network Computing: April 2013

TechWeb Careers