top of page

DataSunrise Database Security is a cross-platform high-performance software that secures databases and data in real-time. DataSunrise defends databases (both SQL and NoSQL) and protects companies' sensitive data from outside threats and internal security breaches.

DataSunrise Database Firewall monitors all queries from client's applications or users to the database that is protected by DataSunrise in real-time. It prevents SQL injection attacks by intelligently detecting SQL injections and immediately blocking malicious queries. All popular databases and data warehouses are supported, including Google Cloud SQL, Oracle, MS SQL Server, MySQL, MariaDB, Greenplum, PostgreSQL, DB2, Teradata, Netezza, Vertica, Mongo DB, SAP Hana and others.

DataSunrise Dynamic Data Masking protects data from any unwanted requests by masking and obfuscating sensitive data in real-time. This is an extremely useful feature for banking working environments.

DataSunrise Security empowers Database Audit and Protection. Consider DataSunrise to be in compliance with database specific regulations, such as SOX, PCI, GDPR, HIPAA, and ISO/IEC 27001. DataSunrise helps to meet these requirements for monitoring, tracking and reporting the database activity to meet auditor's demands.

Security operation teams have to face an enormous challenge to ensure optimum security of a database. The ultimate desire for any hostile attacker is getting an access to organization's databases that store strategic business data. DataSunrise is the right database security solution for organizations of all sizes.

DataSunrise offers comprehensive solutions to protect databases as well as data itself in a variety of environments, both locally and on the cloud. It allows organizations to maintain full control over sensitive data, data access rights, and compliance with the latest security standards.

The key benefits of this solution are:

  • Granular control: DataSunrise gives complete control over the security of sensitive data, database access and automation of compliance with security standards. The ability to limit users and/or applications to perform only certain queries or only certain actions that they can perform on the database.

  • Universal Security: DataSunrise features security features such as: data verification, database security, data masking, data discovery and compliance automation, offering a single-minded experience with different types of databases.

  • Centralized governance: Easy management of security policies from a single central platform.

  • Database Firewall: Detects and prevents unauthorized queries and SQL injections, neutralizing threats and notifying administrators.

  • Working modes: DataSunrise can work in Proxy Mode that provides data protection and auditing or Sniffer Mode that only provides monitoring and reporting actions over the database itself.

  • Access security: DataSunrise enables Active Directory support for connection security to local or  cloud-based databases, as well as Two-Factor authentication using two methods to identify the user.

  • Data masking: Prevents accidental data leakage by masking sensitive data while preserving database functionality. Different masking algorithms are available for different scenarios. DataSunrise provides both dynamic and static data masking to hide sensitive information in real time or while copying data for testing and development purposes.

  • Auditing and monitoring database activity: DataSunrise records all user or application actions, SQL queries, and query results, helping to report around security policy compliance and providing insight into the complete operation of the database. Actively monitoring all actions helps identify potential intrusions.

  • A wide range of supported systems: DataSunrise supports working with all popular database technologies such as: MS SQL, ORACLE, MySQL, PostgresSQL, MongoDB and more.

  • Data disclosure: Quickly locate sensitive data using already predefined search filters.

  • Self-learning capability: DataSunrise learns and adapts to acceptable queries and objects in the database to speed up operation and passage through security policies.

  • Facilitated transition to the cloud environment: When migrating databases to the cloud, DataSunrise ensures consistent data security during migration as well as verification of them.

Data or information is the most valuable resource in the digital world and as such must be strictly monitored and controlled. DataSunrise is a powerful solution for organizations that value and are aware of these values and want absolute control over their data.

Please find more information in the following documents:

DataSunrise Presentation

DataSunrise Datasheet

DataSunrise White Paper

You may find more information about each functionality on the following pages:

Data-Sunrise-Logo-1.png

Database Regulatory Compliance

Manage and administrate the regulations and automate the compliances such as GDPR, HIPAA, SOX, CCPA and more. Prevent internal threats and minimize data breaches.

Database Activity Monitoring & Audit

Monitor user activity in your databases on-prem and in the cloud, increase the visibility of user actions and ensure compliance. Advanced granular reporting, SIEM integration.

Data Masking

Role-based and location-aware sensitive data masking in all your databases. Data masking can be Dynamic or Static to ensure that all data security requirements are met.

Database Firewall

A granular control over active security of databases, detection of suspicious database user behavior and prevention of external and internal attacks on-prem and in the cloud with DataSunrise security proxy.

Sensitive Data Discovery

Enables companies to pinpoint where sensitive data resides in all databases and data warehouses. Ongoing compliance and effective enforcement of monitoring and security policies.

Vulnerability Assessment

View all known vulnerabilities and misconfigurations for the databases included in your DataSunrise’s configuration. Make your databases less vulnerable at many layers.

DataSunrise firewall runs independently of any applications, does not require any software agents and doesn’t inflict any additional load on protected database. It is worth noting that DataSunrise does not store database passwords or any other sensitive info.

Deployment options

DataSunrise is compatible with 64-bit Windows and Linux operating systems. The firewall can be installed on the database server or on a separate server in the cloud or on premises alike. Depending on intended usage, DataSunrise can be deployed in the following configurations.

Sniffer Mode

sniffer_mode.png

While running in this mode, DataSunrise acts as a traffic analyzer: it logs all database events. In this configuration, DataSunrise can not interfere database traffic, so it is able to perform only data auditing functions. Running DataSunrise in sniffer mode does not require any additional tweaking of databases or client applications.

Proxy Mode

When deployed in this configuration, DataSunrise acts as a proxy server controlling incoming queries and database responses. Unlike Sniffer mode, Proxy mode enables DataSunrise to block or modify client queries if necessary. In Proxy mode, DataSunrise can perform all its functions, but it requires some server modifications to be made. Besides that, the database response time is somewhat increased (not more than 5-10%) as compared with Sniffer mode.

Data Audit

activity_monitoring.png

DataSunrise Data Audit component collects information on all user actions and modifications made to database contents. The audit is used mostly for data breach investigation and assessment of security system vulnerabilities. Continual data auditing helps to detect data breach preparations and initiate its prevention.

DataSunrise features self-learning algorithm integrated into the Data Audit component. DataSunrise uses these algorithms to learn typical database user behavior and create a White list of authorized SQL queries intended to be used by Data Security and Data Masking components. The firewall administrator can use dedicated Learning Rules set to manage self-learning process.

Data Security

database_firewall.png

Static Data Masking

static_masking.png

DataSunrise Data Audit component collects information on all user actions and modifications made to database contents. The audit is used mostly for data breach investigation and assessment of security system vulnerabilities. Continual data auditing helps to detect data breach preparations and initiate its prevention.

DataSunrise features self-learning algorithm integrated into the Data Audit component. DataSunrise uses these algorithms to learn typical database user behavior and create a White list of authorized SQL queries intended to be used by Data Security and Data Masking components. The firewall administrator can use dedicated Learning Rules set to manage self-learning process.

Dynamic Data Masking

dynamic_masking.png

The firewall administrator can hide database contents from unauthorized users by replacing the actual database output with fake values. Because data is being obfuscated by DataSunrise before it leaves the database, it helps to prevent possible data leak.

In most cases data masking is used not to protect data from hacker actions, but in situations when intentional data transfer to a 3rd party is needed (testing, reporting etc).

Sensitive Data Discovery

Confidential and regulated data requires special care but first, you need to find where it is. Sensitive Data Discovery feature detects columns containing various types of sensitive data and creates security, audit or masking rule for these columns. Search is performed by detecting matches of pre-defined regular expression patterns for various types of data:

  • PII (driver’s license number, social security number, passport number, criminal history credit history)

  • PCI data (credit card numbers, personal identification numbers (PINS), bank account numbers, magnetic stripe data, security codes)

  • ePHI (health status and history, health insurance account information, medical treatment history, diagnoses, Medicare and Medicaid data)

Event and Statistics Report

DataSunrise-Database-Security-Suite-Overview-1-1024x504.png

DataSunrise Web Console features Event Monitor section dedicated to provide the administrator with full details on system events, intercepted queries, and the firewall actions. To make this info easy to understand, the Event Monitor visualizes it as a table or a chart.

Additionally DataSunrise features an advanced reporting tool named Report Generator. This feature enables you to create custom reports on required events and save them as a PDF or CSV file.

DataSunrise supports all major databases and data warehouses. You are welcome to download a free trial if would like to install on your premises. In case you are a cloud user and run your database on Amazon AWS or Microsoft Azure you can get it from AWS market place or Azure market place.

Get a Quote

If you are interested about licensing options and how much does it cost, please submitt your contact information below: 

Thanks for submitting!

© 2024 by Vangard Data Security Solutions d.o.o.

bottom of page