Now a days , i am doing hands-on IBM infosphere Guardium. This tool is really amazing. It provides the security to your databases(DB2,oracle,MySQL,SQL Server & so on) for the heterogeneous environments. Most of the people think that there is no need of database security but if your data is sensitive then you should look into this champ. I will try to elaborate with the help of following figure:
In the above figure we have:
1) Collector- hardware appliance(1U rack server ; Processor: 2x quad core; Storage: 2x 300GB - RAID-1)
2) Central Policy Manager - hardware appliance(high processing power than collector)
3) S-TAP- Small software
4) S-Gate- An extension to S-Tap.
In simple terms, guardium acts as a firewall between the database servers and the outside environments. All the requests from outside will be anlaysed by guardium first then database server will respond to the request . it can block the user , scrub the data, disconnect the connection and so on
Lets understand the above figure, we have 4 collectors which are connected to the network switches(NS). The NS is also connected to Web /app servers. The job of collector is to collect the all details of the requests from the outside. For this process, collector doesn`t require the DBMS native logging.
Here comes the need of S-TAP. Its a small software that can be attached with any database. The job of S-TAP is to send the details of outside requests to the collector. To block the user , disconnect the connection S-Gate comes into the picture.
The guardium works on the policies. It depends on the Security administrator how he/she define them. To manage many collectors , we have Central policy manager.
So guys i hope you got some idea of this champ. This tool is too vast so this blog is not enough to cover all the exciting features.