Guardium – Real-Time Database Protection and Compliance

Guardium provides the most widely-used solution for ensuring the integrity of corporate information and preventing information leaks from the data center.

Our enterprise security platform prevents unauthorized or suspicious activities by privileged insiders, potential hackers, and end-users of enterprise applications such as Oracle EBS, PeopleSoft, SAP, Business Intelligence, and in-house systems.

At the same time, our solution optimizes operational efficiency with a scalable, multi-tier architecture that automates and centralizes compliance controls across your entire application and database infrastructure.

Unified solution: Built upon a single unified console and back-end data store, Guardium offers a family of integrated modules for managing the entire database security and compliance lifecycle.

Architecture

The Guardium platform is designed to easily scale from safeguarding a single database to protecting thousands of databases in distributed data centers around the world.

Audit & Report

Capturing a Continuous, Fine-Grained Audit Trail
Guardium creates a continuous, fine-grained audit trail of all database activities, including the “who, what, when, where, and how” of each transaction. Our solution contextually analyzes and filters this audit stream in real-time to provide proactive controls and deliver the specific information required by auditors.

Monitor & Enforce

Monitor and enforce policies for database security and change control
With Guardium, you have granular, real-time policies to prevent unauthorized or suspicious actions by privileged database accounts as well as attacks from rogue users or outsiders.

Assess & Harden

Vulnerability, Configuration and Behavioral Assessment
Guardium’s database security assessment scans your entire database infrastructure for vulnerabilities and provides an ongoing evaluation of your database security posture, using both real-time and historical data. The assessment provides a comprehensive library of preconfigured tests based on industry best practices, such as the DOD’s Database Security Technical Implementation Guide (STIG).

Discover & Classify

Automatically locates, classifies and secures sensitive information
As organizations create and maintain an increasing volume of digital information, they are finding it harder to locate and classify sensitive information.

Supported Platforms

Cross-Platform Security
Guardium’s cross-platform solution is ideal for heterogeneous environments because it supports all major DBMS platforms and protocols running on all major operating systems. This table shows all currently supported platforms and versions.

Supported Platform	Supported Versions
Oracle	8i, 9i, 10g (r1, r2), 11g, 11g r2
Oracle (ASO, SSL)	9i, 10g (r1, r2), 11g
Microsoft SQL Server	2000, 2005, 2008
Microsoft SharePoint	2007, 2010
IBM DB2 (Linux, Unix, Linux for System z)	9.1, 9.5, 9.7
IBM DB2 (Windows)	9.1, 9.2, 9.5, 9.7
IBM DB2 for z/OS	7, 8, 9
IBM DB2 for iSeries	V5R2, V5R3, V5R4, V6R1
IBM Informix	7, 9, 10, 11, 11.50
Sun MySQL and MySQL Cluster	4.1, 5.0, 5.1
Sybase ASE	12, 15, 15.5
Sybase IQ	12.6, 15
Netezza	4.5
PostgreSQL	8
Teradata	6.x, 12, 13
FTP

Host-Based Monitoring
Unique in the industry, S-TAPs are lightweight software probes that monitor both network and local database protocols (shared memory, named pipes, etc.) at the OS level of the database server. S-TAPs minimize any effect on server performance by relaying all traffic to separate Guardium appliances for real-time analysis and reporting, rather than relying on the database itself to process and store log data. S-TAPs are often preferred because they eliminate the need for dedicated hardware appliances in remote locations or available SPAN ports in your data center. This table shows all OS platforms and versions for which S-TAPs are currently available.

OS Type	Version	32-Bit & 64-Bit
AIX	5.2, 5.3	Both
AIX	6.1	64-Bit
HP-UX	11.11, 11.23, 11.31	Both
Red Hat Enterprise Linux	3, 4, 5	Both
Red Hat Enterprise Linux for System z	5.4
SUSE Enterprise Linux	9, 10, 11	Both
SUSE Enterprise Linux for System z	9, 10, 11
Solaris - SPARC	8, 9, 10	Both
Solaris - Intel/AMD	10	Both
Tru64	5.1A, 5.1B	64-Bit
Windows	2000, 2003, 2008	Both
iSeries	i5/OS*

* Supports network activity monitoring, local activity support via Enterprise Integrator

Application Monitoring
Guardium identifies potential fraud by tracking activities of end-users who access critical tables via multi-tier enterprise applications rather than direct access to the database. This is required because enterprise applications typically use an optimization mechanism called â€œconnection pooling.â€ In a pooled environment, all user traffic is aggregated within a few database connections that are identified only by a generic application account name, thereby masking the identity of end-users. We support application monitoring for all major off-the-shelf enterprise applications. Support for other applications, including in-house applications, is provided by monitoring transactions at the application server level. This table shows all enterprise applications for which out-of-the-box support is provided, as well as all application server platforms that are supported.

Supported Enterprise Applications
Oracle E-Business Suite
PeopleSoft
Siebel
SAP
Cognos
Business Objects Web Intelligence
+ Others based on customer demand

Supported Application Server Platforms (for other enterprise & custom developed applications)
IBM WebSphere
BEA WebLogic
Oracle Application Server (AS)
JBoss Enterprise Application Platform
+ Others based on customer demand

for information about recently-added platforms.