Product News: Software, Computer Hardware & Peripherals
Virtual Appliance detects advanced database threats.
Press Release Summary:
March 5, 2014 - Based on Core Intrusion Detection System platform, Model IDS-6300v enables cloud providers and managed security service providers to deliver security SaaS offerings based on behavioral analysis technology. Virtual appliance delivers advanced and Zero-Day SQL injection attack detection as well as continuous database monitoring that alerts of attacks and behavioral anomalies in real-time. Product addresses compliance requirements within PCI DSS, HIPAA, GLBA, and NIST spec 800-53 regulations.
Original Press Release
DB Networks Introduces Industry's First Behavioral Analysis-based Core IDS Virtual Appliance to Detect Advanced Database Threats
Press release date: February 25, 2014
Cloud Providers, Virtualized Data Centers Can Now Leverage Behavioral Analysis Combined with Continuous Threat Monitoring to Identify Highly Obfuscated Attacks and Protect Databases
SAN FRANCISCO (RSA Conference 2014 Booth 901 South Expo) – DB Networks, an innovator of behavioral analysis in database security, today introduced the IDS-6300v intelligent security virtual appliance, a new solution based on the industry’s first next-generation Core Intrusion Detection System (IDS) platform introduced last year in DB Networks’ IDS-6300 Core IDS hardware appliance, now delivered as a virtual offering.
Now, cloud providers and managed security service providers (MSSPs) can easily deliver new security software as a service (SaaS) offerings based on DB Networks’ patented behavioral analysis technology for comprehensive SQL injection intrusion detection and defense. Additionally, organizations operating virtualized data centers interested in protecting their core network can benefit from the cost savings delivered in IDS-6300v over hardware alternatives, while large enterprises can leverage its enhanced ease-of-management features.
The recent high-profile attacks on major retailers such as Target and the theft of millions of customers’ private information serve as a strong reminder that database networks are highly susceptible to attacks. DB Networks’ intelligent security virtual appliance delivers advanced and Zero-Day SQL injection attack detection. The IDS-6300v is the industry’s first Core IDS as a virtual appliance that combines behavioral analysis and advanced continuous database monitoring that alerts of attacks and database network behavioral anomalies in real-time. The solution, which enables security as a service offerings, also addresses specific compliance requirements within regulations such as PCI DSS, HIPAA, GLBA, and NIST spec 800-53.
Current techniques using signatures and black listing require time-consuming and error-prone manual updating, and are not effective against database hackers who obfuscate their SQL injection using Advanced Evasion Techniques to conceal their attacks. DB Networks is a pioneer in applying behavioral analysis to identify rogue and weaponized SQL statements, and today’s launch marks the industry’s first IDS virtual appliance using behavioral analysis in the database tier. Virtualization offers the key benefits of reducing hardware costs, easing management, and optimizing resource utilization. The solution will be unveiled this week at RSA Conference 2014 in San Francisco in DB Networks’ Booth 901.
“DB Networks’ new IDS-6300v virtual appliance further reduces complexity, making it easy for a service provider or an organization of any size to gain immediate visibility into their database traffic in a few simple steps,” said Brett Helm, CEO of DB Networks. “By offering both physical and virtual appliance options, DB Networks provides organizations the flexibility to choose which Core IDS solution best suits their needs and environment.”
The IDS-6300v creates opportunities with cloud providers, MSSPs and virtualized data centers, and also opens up international markets for DB Networks. Now, DB Networks can accelerate its international traction without the need to qualify physical security appliances for local requirements. With the IDS-6300v, DB Networks avoids on-going hardware international regulatory/environmental approvals that significantly slow overseas deployment.
In addition to delivering the industry’s most accurate SQL injection attack detection, DB Networks’ new Core IDS solution’s continuous monitoring also adds the unique benefit of database discovery for organizations. Further, its ability to parse and analyze SQL statements offers organizations unique insight into the SQL statements being created by their applications. Coding issues involving database access instructions are rapidly identified and traced to their source where they can be remediated.
The IDS-6300v works passively as a virtual appliance and is operationally transparent. It creates a unique model of how an application creates the SQL statements that it uses to converse with the database. All SQL statements are evaluated against the model for proper behavior. Any rogue SQL statement causes the system to alarm as an attack in real-time. The behavioral learning and model creation is automated, making it much faster and more accurate than manually generating signatures or the tuning of signatures to suppress false alarms.
Availability and Pricing
The DB Networks IDS-6300v intelligent security virtual appliance is available today from DB Networks and from authorized resellers. For more information, see http://www.dbnetworks.com/products/IDS-6300.htm. Pricing starts at $20,000 with volume discounts available.
About DB Networks
DB Networks is an innovating behavioral analysis technology provider in the field of database security. Developed for organizations that need to protect their data from advanced attacks, including Zero-Day attacks, DB Networks offers effective countermeasures against SQL injection and database Denial of Service attacks. Database attacks happen rapidly – in a matter of minutes – and bypass traditional perimeter security measures. DB Networks’ unique approach uses behavioral analysis technology to automatically learn each application’s proper SQL statement behavior. Any SQL statement dispatched from the application that deviates from the established behavioral model immediately raises an alarm as a possible attack. DB Networks is a privately held company headquartered in San Diego, Calif. For more information, see http://www.dbnetworks.com, or call (800) 598-0450.
DB Networks is a registered trademark of DB Networks in the United States and other countries. All other company and product names are either trademarks or registered trademarks of their respective companies.