DB Networks’ virtual IDS stops advanced SQL injection attacks
DB Networks introduced the IDS-6300v intelligent security virtual appliance, a new solution based on the next-generation Core Intrusion Detection System (IDS) platform introduced last year in DB Networks’ IDS-6300 Core IDS hardware appliance.
Now, cloud providers and managed security service providers (MSSPs) can easily deliver new security software as a service (SaaS) offerings based on DB Networks’ patented behavioral analysis technology for comprehensive SQL injection intrusion detection and defense.
Additionally, organizations operating virtualized data centers interested in protecting their core network can benefit from the cost savings delivered in IDS-6300v over hardware alternatives, while large enterprises can leverage its enhanced ease-of-management features.
The recent high-profile attacks on major retailers such as Target and the theft of millions of customers’ private information serve as a strong reminder that database networks are highly susceptible to attacks. DB Networks’ intelligent security virtual appliance delivers advanced and Zero-Day SQL injection attack detection. The IDS-6300v is the industry’s first Core IDS as a virtual appliance that combines behavioral analysis and advanced continuous database monitoring that alerts of attacks and database network behavioral anomalies in real-time.
The solution, which enables security as a service offerings, also addresses specific compliance requirements within regulations such as PCI DSS, HIPAA, GLBA, and NIST spec 800-53.
Current techniques using signatures and black listing require time-consuming and error-prone manual updating, and are not effective against database hackers who obfuscate their SQL injection using Advanced Evasion Techniques to conceal their attacks. DB Networks is a pioneer in applying behavioral analysis to identify rogue and weaponized SQL statements, and today’s launch marks the industry’s first IDS virtual appliance using behavioral analysis in the database tier. Virtualization offers the key benefits of reducing hardware costs, easing management, and optimizing resource utilization.
The IDS-6300v creates opportunities with cloud providers, MSSPs and virtualized data centers, and also opens up international markets for DB Networks. Now, DB Networks can accelerate its international traction without the need to qualify physical security appliances for local requirements. With the IDS-6300v, DB Networks avoids on-going hardware international regulatory/environmental approvals that significantly slow overseas deployment.
In addition to delivering accurate SQL injection attack detection, the new solution’s continuous monitoring also adds the unique benefit of database discovery for organizations. Further, its ability to parse and analyze SQL statements offers organizations unique insight into the SQL statements being created by their applications. Coding issues involving database access instructions are rapidly identified and traced to their source where they can be remediated.
The IDS-6300v works passively as a virtual appliance and is operationally transparent. It creates a unique model of how an application creates the SQL statements that it uses to converse with the database. All SQL statements are evaluated against the model for proper behavior. Any rogue SQL statement causes the system to alarm as an attack in real-time. The behavioral learning and model creation is automated, making it much faster and more accurate than manually generating signatures or the tuning of signatures to suppress false alarms.
The DB Networks IDS-6300v intelligent security virtual appliance is available from DB Networks and from authorized resellers. Pricing starts at $20,000 with volume discounts available.
“DB Networks’ new IDS-6300v virtual appliance further reduces complexity, making it easy for a service provider or an organization of any size to gain immediate visibility into their database traffic in a few simple steps,” said Brett Helm, CEO of DB Networks. “By offering both physical and virtual appliance options, DB Networks provides organizations the flexibility to choose which Core IDS solution best suits their needs and environment.”