PentaSafe Extends Database Security to Microsoft SQL Server
November 8, 2002VigilEnt Security Agent for SQL Server v.1.0 automates database security management and bolsters native security controls
PentaSafe Security Technologies, Inc., a leading provider of integrated security management solutions, announced earlier this week general availability of its VigilEnt Security Agent for Microsoft SQL Server v.1.0, which complements its existing line of Oracle and Sybase database security solutions and automates security management for SQL Server databases.
Databases are one of the most critical assets of any Global 2000 enterprise and are often overlooked when assessing and ensuring proper levels of IT security. An increased number of serious attacks, coupled with the frequency of security-related patches and service packs, continue to cause headaches for security and database administrators alike.
"What we are seeing from customers is that while they are methodically locking down operating systems and Web servers, they are not consistently taking the same steps to secure their underlying databases," commented Greg Davoll, Database Product Manager at PentaSafe." The VigilEnt Security Agent for SQL Server gives customers the ability to limit their database's exposure to attacks and worms that exploit null passwords, default accounts, or over-privileged users, which ultimately yields a more secure environment."
VigilEnt Security Agent for Microsoft SQL Server v.1.0VigilEnt Security Agent for Microsoft SQL Server v.1.0 provides vulnerability assessment, security administration, and database auditing for SQL Server v7 and v2000 databases, enabling customers to self-audit their database environments. PentaSafe has packed the latest Microsoft vulnerability information, including those specifically for buffer overflows, service pack releases, extended stored procedure privileges, and Web tasks into the Agent. Additionally, the Agent supports compliance with regulatory guidelines, such as the Health Insurance Portability and Accountability Act (HIPAA), Gramm- Leach-Bliley Act (GLBA) and FDA 21 CFR Part 11.
Vulnerability Assessment: Custom tasks define and save multiple queries, producing a single vulnerability assessment report that may be run against multiple, distributed SQL Servers in parallel. Administrators are able to automate SQL queries and generate security compliance reports, which may be quickly recalled and re-executed. Over 30 SQL Server user and system reports can be generated in addition to more than 58 SQL Server vulnerability checks.
Security Administration: A set of database security administration actions allow delegation of security-related tasks, including provisioning user accounts, changing of account passwords, and granting system and object privileges. An intuitive interface allows these actions to be executed across multiple database instances in parallel.
Database Auditing: Audit Manager enhances the native audit trail and provides details on stored procedure execution, selective data updates, and other security-related operations. These features, as well as user-defined auditing, aid companies in complying with regulations such as HIPAA, GLBA, FDA 21 CFR Part 11, and other privacy related regulations.
Additionally, security administrators are able to centrally manage SQL Server along with Oracle and Sybase databases via PentaSafe's VigilEnt Security Manager's enterprise console.