See your link here

Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.

Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Data Detectives

Finding that network and application security isn't enough, companies are turning to software that monitors database activity and provides an audit trail.

Sue Hildreth Today’s Top Stories

or Other Databases Stories

November 14, 2005 (Computerworld) -- At McCarron International Airport in Las Vegas, virtually every detail of airport operations is stored in one of 14 Oracle Corp. or Microsoft Corp. database servers. Passenger data, personnel files, flight information, airport security data—all of that plus volumes of other sensitive information are housed in the databases. Any unauthorized change to or theft of that data could have severe consequences for the airport.

So naturally, when Phillip Murray, McCarron's departmental systems administrator, receives a request from airport security to look into a suspicious transaction, he takes it very seriously. Until recently, he might have devoted days, or even weeks or months, to scouring log files and SQL statements to investigate questionable activity on a database. "I'd have to carefully piece together events," he says. "It's a matter of browsing through thousands of transactions."

Today, however, Murray spends a lot less time analyzing log files thanks to a database activity auditing and monitoring tool—SQL Guard from Guardium Inc. in Waltham, Mass. The software tracks database access and transactions, sending alerts when unusual activities are spotted. If Murray needs to analyze an event more closely, SQL Guard provides an audit trail of the relevant commands and transactions.

"It's been an immense timesaver," says Murray.

While much of today's application-level security is automated with third-party tools, the databases behind these applications are often not so secure. The assumption is that attacks will occur from outside and be caught by the firewall or the log-in and authorization process of the application. Databases, it is presumed, are too far into the back office to be threatened by a direct attack.

"Traditionally, databases are deep in the organization, so it's hard for somebody to directly nail the database server," says Rich Mogull, research vice president at Gartner Inc. "But more organizations are now concerned about their own systems administrators and other employees, not just external attackers, and that's where these tools are the most valuable."

Concern about data security has been heightened by media reports of thefts of consumer data, as well as financial fraud by employees. Government regulations, such as the Sarbanes-Oxley Act, have also emphasized the need to closely audit access to sensitive data. And, of course, for organizations that serve the public—like McCarron Airport—the terrorist attacks of Sept. 11, 2001, significantly heightened security fears.

"Since 9/11, we had to start looking at our vulnerabilities. Despite the fact that we do rigorous background checks, there's a possibility that someone might come in and gather data that would make the airport easier to attack," says Murray.

But for McCarron, as with most organizations, there's a lot of data to protect. With so much information at risk and too few human resources available to police it all, the demand for automated security products such as database activity monitoring and auditing tools has been on the rise.

Continued...
1 | 2 | 3 | 4 | NEXT

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

	Sidebar: The Trouble With Triggers
	Sidebar: Deciphering C2 Security

Data Detectives

"Yahoo's owners have spoken and Jerry Yang is out as Yahoo CEO. Does this mean that Microsoft is in?..." Read more...

"In five years, IT will still be a viable career path, but it will no longer exist as the stand-alone..." Read more...

Read more Business Intelligence posts or See all Blogs

	Microsoft's Ballmer ordered to testify in 'Vista Capable' suit
	Spyware case finally closed for teacher Julie Amero
	Bush's exit to put new e-records system to the test
	More top stories...

	Judgment favors Novell in ongoing SCO case
	Symantec sees spike in dangerous Microsoft attacks
	BlackBerry Storm buyers brave the cold in Boston to be first with the new smart phone

2008 Salary Survey: IT pay takes tiny leaps

If you're like our 7,000 survey respondents, your paycheck this year has been flattened and your bonus obliterated. We offer 12 ways to plump up your paycheck.

Windows 7 in-depth review and video: This time Microsoft gets it right

Microsoft's next OS might more accurately be called Windows 6.5: It's essentially a better version of Vista.

Twitter for business: 5 ways to tap the power of the tweet

Twitter can be a valuable business tool -- if you know what you're doing. Here's how to juice it for all it's worth.

Microsoft's 'Vista Capable' changes outraged HP, insider e-mails show

By helping Intel with loosened 'Vista Capable' requirements, Microsoft 'severely damaged' its credibility, said an HP exec in a newly unsealed Feb. 2006 e-mail.

Windows 7

Get the latest news, reviews and more about Microsoft's newest desktop operating system

2008 Salary Survey

Find wage data for 50 IT job titles.

All Zones
Business Continuity Zone
The File Data Management Zone
Security Management Zone
The SAS Zone
Business Intelligence and Analytics Zone
The Enterprise Search Zone
Software as a Service Zone
The Security Zone

See your link here

Speeding the time to intelligence

Get this Computerworld report free for a limited time, compliments of SAS.
Time To Intelligence -- a concept defining how long it takes to get accurate and timely information into the hands of workers who need it most. Do it slower than your competitors and your company is toast. Do it faster, you scorch them. Business Intelligence is the key to optimizing Time To Intelligence, and success there is a combination of people, policies, and technology.

Download this executive briefing

Transforming Disaster Recovery - VMware Infrastructure for rapid, reliable and cost-effective Disaster Recovery

Download this white paper today!
(Source: VMware) VMware Infrastructure transforms disaster recovery by providing you fast, reliable and cost-effective disaster recovery. Why suffer from the slow, expensive and unreliable problems associated with traditional disaster recovery solution? VMware makes disaster recovery affordable through consolidation savings and re-use of existing servers for your disaster recovery site. Experience the speed of virtualization!

Download this white paper

From Laggard to Leader: Transforming the Data Center

From Laggard to Leader: Transforming the Data Center
Register for this complimentary webcast today!

Go to the webcast

White Papers

Read up on the latest ideas and technologies from companies that sell hardware, software and services.

	Infoblox IP Address Management Solutions Brief
	2008 Internet Malware Trends Report
	Enterprise Findability Without the Complexity

View more whitepapers

SAS Business and Analytics Zone
No matter where your organization is on the path toward evolving your IT infrastructure, SAS can adapt to your situation to meet your long-term enterprise intelligence needs. We can help you drive intelligence evolution to the next level, while leveraging and extending the value of your existing IT investments.
Learn more in the Business and Analytics Zone

See All Zones

Best Places to Work in IT
Where can you earn top dollar, get the best benefits, the latest IT and more? Find out in our 14th annual survey.

SQL Anywhere Developer Edition Download

SQL Anywhere is the industry-leading mobile and embedded database. Designed for database-powered applications that operate in frontline environments without onsite IT support, SQL Anywhere offers enterprise-caliber features in a database that is easily embedded and widely deployed in server, desktop, remote office and mobile applications.

Download the free SQL Anywhere Developer Edition

SAS Information Management Kit

SAS is the leader in business intelligence and analytical software and services. Only SAS offers leading data integration, storage, analytics and business intelligence applications within a comprehensive enterprise intelligence platform. SAS gives 97 of the top 100 companies in the 2007 Fortune 500 THE POWER TO KNOW®.

Webcast: The Information Management Roadmap

Imagine high-quality data, cleansed, analyzed and delivered throughout your organization. Join Computerworld, IT visionary Thornton May and a panel of experts to learn how SAS® can help you make it happen.

View this webcast

Research Report: Information Management Initiatives at Midsize and Large Organizations

See the top-line results of this Computerworld sponsored survey to see how IT and business leaders are handling information management implementation.

Download this report

White Paper: Information Management: Better Information for Winning Decisions.

This white paper explains how the SAS Information Evolution Model aids companies in assessing how they use this information to make strategic decisions and drive business.

Download this white paper

Sponsored Links

AT&T Business Continuity Survey on Risk Management

How-to video: Smart steps to efficient power management

SYMANTEC IS EMAIL ARCHIVING: Enterprise Vault - Free EMAIL HEALTH CHECK

Defy the laws of reporting - introducing Crystal Reports(R) 2008. Discover it now.

Instant server virtualization. Free download!

See the power of the new Quad-Core AMD Opteron" processor.

Citrix NetScaler 9 - Slash server costs by 60%

Kodak i600: Easy on your operators and your bottom line. Learn more about the i600 now.

Rackspace: The True Value of a Hosting Provider

Free Trial - New Diskeeper 2008 unleashes system speed. Get maximum system performance and reliability automatically now!

Samsung Printing Solutions--control workflow, costs and operations

Learn what 389 global technology decision-makers had to say about developing service-level agreements (SLAs) and measuring service quality.

Download Windows Server 2008 Hyper-V

What can you do with two monitors and your laptop? See more&

Not All QSAs Are Created Equal: What You Should Know Before You Buy

The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability

The AMD Virtual Experience Virtual Trade Show

Beyond consolidation: five reasons why you should start virtualizing

Renowned Engineering Institution Chooses AMD Processor-Based Servers

SYMANTEC IS EMAIL ARCHIVING: Enterprise Vault - Get your free white paper. Effective strategies for backup, archiving and recovery

Learn how the new Quad-Core AMD Opteron(TM) processor improves performance

Microsoft SQL Server 2008. Read Case Studies & Try for Free.

Web Hosting UK - Cheap Windows Linux PHP MySQL ASP MSSQL Hosting in UK

HP StorageWorks products - control, consolidation and confidence.

Meru announces Wireless LAN Virtualization. Optimize RF use. Lower costs. Learn More

Save up to 64% plus 3 FREE Gifts from Omaha Steaks.

Predict the future with HP Insight Power Manager

Reliable. Long-lived. Portable. Affordable. Energy-efficient...Tape Storage

The Future is Fusion. Only from AMD. See our video to learn more.

Tape vs. Disk...Which Costs More? Read "Disk and Tape TCO Square off Again"

Intercept Spam & Viruses With MessageLabs

Leverage Your Cisco infrastructure for Superior Application Performance

Learn about the AMD Virtual Experience

Introducing: Project Icebreaker

About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map

CIO

Computerworld

CSO

DEMO

GamePro

Games.net

IDG Connect

IDG World Expo

Infoworld

The Industry Standard

ITworld

JavaWorld

LinuxWorld

MacUser

Macworld

Network World

PC World

Playlist

Copyright © 2008 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.

	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10