IBM Infosphere Guardium - Database Security

76
© 2010 IBM Corporation Information Management IBM InfoSphere Guardium Enterprise-wide Database Protection and Compliance

TAGS:

description

 

Transcript of IBM Infosphere Guardium - Database Security

Page 1: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Enterprise-wide Database Protection and Compliance

Page 2: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

SQL injection played a role in 79% of records compromised

during 2009 breaches

“Although much angst and security funding is given to …. mobile

devices and end-user systems, these assets are simply not

a major point of compromise.”

Database Servers Are The Primary Source of Breached Data

2010 Data Breach Report from Verizon Business RISK Team http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf

Source of Breached Records

… up from 75% in 2009 Report

http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf
Page 3: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Perimeter defenses no longer sufficient

A fortress mentality will not work in cyber. We cannot retreat

behind a Maginot Line of firewalls.

-- William J. Lynn III, U.S. Deputy Defense Secretary

Outsourcing

Web-Facing Apps

Employee Self-Service,

Partners & Suppliers

Insiders (DBAs, developers,

outsourcers, etc.)

Stolen Credentials

(Zeus, etc.)

Page 4: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Typical home-grown solutions are costly and ineffective

Create reports

Manual review

Manual remediation dispatch and tracking

Significant labor cost to review data and maintain process

High performance impact on DBMS from native logging

Not real time

Does not meet auditor requirements for Separation of Duties

Audit trail is not secure

Inconsistent policies enterprise-wide

Native Database Logging

Pearl/Unix Scripts/C++

Scrape and parse the data

Move to central repository

Native Database Logging

Native Database Logging

Native Database Logging

Page 5: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

InfoSphere Guardium continues to demonstrate its leadership …

2011

Source: The Forrester Wave™: Database Auditing And Real-Time Protection, Q2 2011, May 6, 2011. The Forrester Wave is copyrighted by Forrester Research, Inc. Forrester and Forrester Wave are trademarks of Forrester Research, Inc. The Forrester Wave is a graphical representation of Forrester's call on a market and is plotted using a detailed spreadsheet with exposed scores, weightings, and comments. Forrester does not endorse any vendor, product, or service depicted in the Forrester Wave. Information is based

on best available resources. Opinions reflect judgment at the time and are subject to change.

Page 6: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

6

What We Offer?

Database User Activity Monitoring

- Auditing and reporting

- Enforcing database user access

- Prevention (blocking)

Data Privacy

- Masking non-production data

- Encryption for production data

- Redaction for documents

Vulnerability Assessment

Page 7: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Collector

Real time database monitoring and protection with InfoSphere Guardium

No DBMS or application changes

Does not rely on DBMS-resident logs that can

easily be erased by attackers, rogue insiders

100% visibility including local DBA access

Minimal performance impact

Cross-DBMS solution

Granular, real-time policies & auditing

–Who, what, when, how

Automated compliance reporting, sign-

offs and escalations (financial

regulations, PCI DSS, data privacy

regulations, etc.)

Host-based

Probes (S-TAPs)

Page 8: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Page 9: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Architecture

Page 10: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Page 11: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Scalable Multi-Tier Architecture

Integration with LDAP,

IAM, SIEM, IBM TSM,

BMC Remedy, …

Oracle on

Linux for

System z

Page 12: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 13: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 14: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 15: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 16: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 17: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 18: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 19: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 20: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 21: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 22: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Installation

Page 23: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Page 24: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Page 25: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

Page 26: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Data Base Auto Discovery (DBAD)

Page 27: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 28: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 29: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Security Policy & Reporting

Page 30: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 31: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 32: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 33: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 34: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 35: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 36: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 37: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Classifier

Page 38: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 39: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 40: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 41: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Real Time & Correlation Alerts

Page 42: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 43: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 44: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 45: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium S-GATE

Page 46: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 47: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 48: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 49: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 50: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 51: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Quarantine & Redact

Page 52: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 53: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 54: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 55: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 56: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 57: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Configuration Audit System (CAS)

Page 58: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 59: IBM Infosphere Guardium - Database Security

© 2011 IBM Corporation

IBM Security Solutions

Page 60: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 61: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 62: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 63: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Vulnerability Assesment

Page 64: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 65: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 66: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Entitlement Reports

Page 67: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 68: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 69: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Application User Identification

Page 70: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 71: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 72: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 73: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 74: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 75: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Page 76: IBM Infosphere Guardium - Database Security

© 2010 IBM Corporation

Information Management

IBM InfoSphere Guardium Paldies par uzmanību!


IBM InfoSphere™ Solutions for System z - Confex · PDF fileAnalyzer, IBM InfoSphere QualityStage, IBM InfoSphere Global Name Recognition, IBM InfoSphere DataStage, IBM InfoSphere

IBM InfoSphere™ Solutions for System z - Confex · PDF fileAnalyzer, IBM InfoSphere QualityStage, IBM InfoSphere Global Name Recognition, IBM InfoSphere DataStage, IBM InfoSphere

IBM InfoSphere Guardium overview

IBM InfoSphere Guardium overview

IBM InfoSphere Guardium Tech Talk: Guardium 101 · Information Management – InfoSphere Guardium 6 IBM InfoSphere Guardium Tech Talk21 Feb 2013 Historical perspective: What is Guardium?

IBM InfoSphere Guardium Tech Talk: Guardium 101 · Information Management – InfoSphere Guardium 6 IBM InfoSphere Guardium Tech Talk21 Feb 2013 Historical perspective: What is Guardium?

IBM InfoSphere Guardium - isaca.org · IBM InfoSphere Guardium Enterprise-wide Database Protection and Compliance Jānis Bērziņš, DPA 08.11.2012. Data is the key target for securitybreaches…..

IBM InfoSphere Guardium - isaca.org · IBM InfoSphere Guardium Enterprise-wide Database Protection and Compliance Jānis Bērziņš, DPA 08.11.2012. Data is the key target for securitybreaches…..

Deploying the BIG-IP LTM with IBM InfoSphere Guardium · InfoSphere Guardium, IBM's database security appliance. This document provides guidance for deploying the BIG-IP Local Traffic

Deploying the BIG-IP LTM with IBM InfoSphere Guardium · InfoSphere Guardium, IBM's database security appliance. This document provides guidance for deploying the BIG-IP Local Traffic

IBM InfoSphere MDM Inspector€¦ · IBM InfoSphere Master Data Management V11.5 IBM InfoSphere MDM Inspector C'8O SC43-1914-01

IBM InfoSphere MDM Inspector€¦ · IBM InfoSphere Master Data Management V11.5 IBM InfoSphere MDM Inspector C'8O SC43-1914-01

IBM InfoSphere Guardium for federal information systems · IBM TSM, Tivoli, etc. Continuous monitoring and policy enforcement to protect sensitive data InfoSphere Guardium Data Activity

IBM InfoSphere Guardium for federal information systems · IBM TSM, Tivoli, etc. Continuous monitoring and policy enforcement to protect sensitive data InfoSphere Guardium Data Activity

InfoSphere Guardium Tech Talk - IBM · PDF fileExamples (other than the Mainframe/IBM i STAPs which implement a UF variant as well): – NEC’s Elastic Relational Store implements

InfoSphere Guardium Tech Talk - IBM · PDF fileExamples (other than the Mainframe/IBM i STAPs which implement a UF variant as well): – NEC’s Elastic Relational Store implements

IBM InfoSphere Guardium S-TAP for DB2 on z/OS … InfoSphere Guardium S-TAP for DB2 collector agent is responsible for the collection of audit data in an InfoSphere Guardium S-TAP

IBM InfoSphere Guardium S-TAP for DB2 on z/OS … InfoSphere Guardium S-TAP for DB2 collector agent is responsible for the collection of audit data in an InfoSphere Guardium S-TAP

IBM InfoSphere Guardium - ISACA konference... · IBM InfoSphere Guardium ... §Database servers contain your client’s most valuable information ... IBM DB2 (Linux, UNIX) 9.1, 9.5,

IBM InfoSphere Guardium - ISACA konference... · IBM InfoSphere Guardium ... §Database servers contain your client’s most valuable information ... IBM DB2 (Linux, UNIX) 9.1, 9.5,

Data Sheet Vormetric Data Security Platorm Vormetric Data ...Teradata • SAP HANA • Docker containers • Oracle, IBM DB2, Microsoft SQL ... IBM InfoSphere Guardium Data Encryption,

Data Sheet Vormetric Data Security Platorm Vormetric Data ...Teradata • SAP HANA • Docker containers • Oracle, IBM DB2, Microsoft SQL ... IBM InfoSphere Guardium Data Encryption,

InfoSphere Guardium V9 Technical Training, ERC_ 2.1 Student Excercises

InfoSphere Guardium V9 Technical Training, ERC_ 2.1 Student Excercises

InfoSphere Guardium Accelerate the path to PCI DSS …alfatec.hr/wp-content/uploads/2011/11/Guardium-i-PCIDSS.pdfAccelerate the path to PCI DSS data compliance using InfoSphere Guardium

InfoSphere Guardium Accelerate the path to PCI DSS …alfatec.hr/wp-content/uploads/2011/11/Guardium-i-PCIDSS.pdfAccelerate the path to PCI DSS data compliance using InfoSphere Guardium

IBM InfoSphere Streams

IBM InfoSphere Streams

Installing and - packtpub.com and Configuring Guardium, ODF, and OAV In this appendix, we will cover the following topics: f IBM Infosphere Guardium Database Security

Installing and - packtpub.com and Configuring Guardium, ODF, and OAV In this appendix, we will cover the following topics: f IBM Infosphere Guardium Database Security

Deploying the BIG-IP ASM with IBM InfoSphere Guardium · See the IBM documentation on the proper installation and configuration of the IBM S-TAP. 6. The application maintains its

Deploying the BIG-IP ASM with IBM InfoSphere Guardium · See the IBM documentation on the proper installation and configuration of the IBM S-TAP. 6. The application maintains its

IBM Guardium Data Encryption - IBM - United States

IBM Guardium Data Encryption - IBM - United States

IBM InfoSphere Guardium V7-To-V8 Upgrade Guide_2011!07!06

IBM InfoSphere Guardium V7-To-V8 Upgrade Guide_2011!07!06

Making the Most of InfoSphere Guardium Vulnerability ... · PDF fileMaking the Most of InfoSphere Guardium Vulnerability Assessment ... InfoSphere Guardium Vulnerability Assessment

Making the Most of InfoSphere Guardium Vulnerability ... · PDF fileMaking the Most of InfoSphere Guardium Vulnerability Assessment ... InfoSphere Guardium Vulnerability Assessment

InfoSphere Guardium - IBM€¦ · Can you prove that ... Improve database security for SOX compliance & data governance – Phase 1: Monitor all privileged user activities, especially

InfoSphere Guardium - IBM€¦ · Can you prove that ... Improve database security for SOX compliance & data governance – Phase 1: Monitor all privileged user activities, especially