IPLocks Audit Control

Complete, Accurate, Safe Database Monitoring and Auditing

IPLocks Audit Control solution provides the industry's most full-featured monitoring and auditing technology. No other vendor can match the completeness of database activity and platform support provided by IPLocks. That's why IPLocks is used by companies around the world to address critical issues such as:

Change Control
Privileged User Monitoring
Privacy Protection
Identity Theft Prevention
Internal Controls
Security

What is Database Monitoring and Auditing?

Database monitoring and auditing are often used as synonyms, but this is incorrect. Database monitoring is the process of watching database activity for specific behavior, usually in a security or compliance context. Database auditing refers to the recordation of database activity.

Often, database monitoring software uses database audit trails as the source of information for database activity. This is good because the database audit settings can be configured to provide only the information needed and because the database audit trails are complete and accurate.

Some database monitoring software looks at network traffic and tries to deduce database activity from the network. Network-centric database monitoring has shortcomings in the areas of console connections, stored procedures, aborted long-running transactions, server-only activity, and encrypted networks. For these reasons and more, network monitors are not a good source of database audit trails.

IPLocks Audit Control platform provides continuous database monitoring that:

Captures all types of database activity from administration events to user activity
Captures all changes whether the originating commands were plain SQL or stored procedures
Captures activity irrespective of connection type (ex - standard, pooled, or console)
Captures activity on encrypted networks without requiring bypasses or special configurations
Can learn user behavior, not only in support of IDS and IPS like network-based tools, but also to detect and prevent anomalous database queries by authorized users
Is risk-free to production applications

IPLocks Audit Control Key Features

Easy / Safe Deployment

Non-invasive and does not affect database performance
Non-invasive and does not affect application performance
Non-invasive and does not provide an additional point of failure for applications
Non-invasive and does not introduce a new security risk

Central Policy Management

Single policy repository allows for consistent policy application
Web based interface provide 'manage anywhere' capability.
Maintain history of policy violations

Full Database Coverage

Support for current production and legacy database versions
Consistently apply policies to different database types
Maintains audit data for forensic analysis

Full Activity Coverage

Metadata changes
Privilege changes
Data changes
Content changes
User behavior

Encapsulates Best Practices

Years of industry best security practices pre-bundled
Expert level policies pre-defined
Custom policy capability
Lowers risk of human error

Automated Alerting & Reporting

Scans and reports can be scheduled to ensure timeliness
All alerts can be individually provided to email, paging, control centers
All reports can be placed into different formats, such as PDF, HTML and text files.

Behavioral & Content Analysis

Learns user behavior and discovers when activities fall outside of normal behavior, such as:

Suspicious access frequency
Suspicious logins
Excessive reads
Abnormally long sessions

Learns appropriate content (using probabilistic modeling) and discovers unusual or unexpected data values

Forensic Audit Analysis

Independent audit storage provides for integrity of audit data
Correlate database activities across multiple databases
Verify input from applications and batch jobs matches expectations

Enterprise Ready

Multi-vendor: supports Oracle, IBM DB2 , Sybase ASE, and Microsoft SQL Server
Command Line Interface for automation through scripting
SNMP for event-based integration