Multiple Level Access Control for Production Databases
iProtect provides some of the best access controls for production databases. These controls also comply with the toughest legislation. Prevent unnecessary access, and assign and manage appropriate access for new users. Control the users who have access to your production database, and authorize the program, terminal and time of day that access is allowed for each user.
Compliant, Authorized Access
iProtect accommodates a variety of customized levels of database access, making this product particularly important when protecting production databases. Using user-defined groups, database schemas are separated based on various criteria. For example, a SYSTEM group might consist of system users, and an APPLICATIONS group might consist of all schemas associated with a particular Application. Each access group has unique access rules based on compliance and security requirements.
iProtect allows access to only legitimate schemas that make a connection using authorized programs, and from pre-approved terminals. A Rule Wizard grants multiple and different levels of group access. Administrators can define whether or not the group can make a connection to the database directly, at what times the group can access the database, what programs the group can use, from which terminals the group can access the database, etc. For instance, certain functional users may be denied access to production information after working hours; new users are assigned iProtect authorization before accessing a database; and an unauthorized developer using database access tools will be denied access to production entirely. These are examples of the authorization power of iProtect.
iProtect easily and flexibly manages access needs while remaining compliant with legislation such as Sarbanes-Oxley section 404. Detailed logs document access rules which are defined at the most granular level. iProtect enables organizations to master the moving access control target.
Though 98 percent of U.S. companies use firewalls, more than 74 percent of U.S. corporate financial losses are from four main security sources:*
- Virus attacks
- Unauthorized access to networks
- Lost or stolen laptops or mobile hardware
- Theft of proprietary information or intellectual property
* According to the 2006 Study conducted by the Computer Security Institute (CSI) with the participation of the San Francisco FBI’s Computer Intrusion Squad
Efficient, Low Cost Architecture. One Solution.
Use iProtect with iMask and provide complete authorization and access control. iProtect ensures that only authentic users have access to your databases. iMask allows users to see only the data they need to do their job. Organizations can rest assured that their production data and customers are protected.
Example: During user acceptance testing, certain users must be able to see live customer names in order to validate testing results. Other users may not. Based on a specific user’s permissions, iMask dynamically determines the appropriate information to display for that particular user; data that is live or masked. When the user acceptance testing period is closed, iProtect may deny access to that same user if he/she attempts to access the database from a non-approved program outside of working hours.
Add iScramble and iMonitor to complete the preventive and detective solution set for production and non-production databases. Simple, easy–to-use interfaces allow collaboration between IT, Audit, Security, and Compliance groups within your organization; streamlining compliance, audit costs, and efforts..
iProtect uses the existing database technology stack; no additional software licensing is required. iProtect, iMask, iScramble, and iMonitor reside on a single server and are maintained via a shared administrative console with a common interface. All four products also share a common metadata, content authoring and data classification engine. The engine resides on a unified framework, using a single installation.
| 
