Computerworld

Entercept locks down database servers

Shoring up a gaping network hole hackers have begun to target in earnest, Entercept Security Technologies Inc. announced on Monday that it is expanding its intrusion prevention software to blanket database servers.

Called Entercept Database Edition, the new host-based intrusion prevention product envelops and isolates databases within its own protective layer to proactively identify unauthorized access attempts or alteration of stored data, enforce correct behavior, and thwart any abnormal activity from affecting performance, said Lou Ryan, CEO and president of San Jose, Calif.-based Entercept.

Among the chief features of Database Enterprise Edition, noted Ryan, is its ability to block SQL queries or "injections." Through an SQL injection, a hacker could retrieve, alter, or control critical information. The popular technique can also allow a perpetrator to create a back door within an application or leave behind a Trojan horse program for future activation.

The sheer vulnerability of databases, coupled with stringent federal rules to enforce the protection of specific data, such as the Health Insurance Portability and Accountability Act (HIPAA) and the Graham Leach-Bliley (GLB) Act, have catapulted the back-end infrastructure repositories into the security spotlight, said Michael Rasmussen, director of Boston-based Giga Information Group Inc.

"The target of hackers is databases. If somebody wants to get credit card information [illegally], they're not going to try to sniff that off the Internet which is not an easy task," said Rasmussen. Also, regulations including HIPAA and GLB regulate identifiable patient [and other] information. Where's that information found -- in databases."

Entercept Database Edition is currently available with pricing starting at US$2,995 for Database Edition Agents.