|
Database Monitoring and Protection
|
Tizor provides the world’s largest companies with the only enterprise database monitoring and protection solutions capable of monitoring all critical data activity across the enterprise data center—database servers (in open systems and mainframe environments) and file servers—for compliance assurance, data protection, and theft detection.
Deployed as one or more transparent, non-inline network appliances, Tizor’s Mantra provides a scalable, unified solution that addresses multiple data security and compliance objectives (SOX, PCI, theft detection, EPD, etc.), diverse server types and vendors and any imaginable user community.
Mantra was architected to satisfy a set of specific design goals believed to be most important for enterprise-level database monitoring and protection. Mantra’s strengths include:
Deploys Faster
Mantra makes it easy to deploy a database monitoring solution. Every aspect of the product has been designed for ease of use, productivity, and speed of deployment. With Mantra, your project will be deployed faster and you will use fewer resources.
Most Intelligent
Event capture, analysis, and storage are rule-driven with pioneering real-time filtering, forensics and analytics—including patent-pending Behavioral Fingerprinting® technology.
More Scalable
Mantra was architected specifically to meet the high-performance requirements of the largest enterprise data centers. Auditing over 50,000 transactions per second, with no dropped packets, Mantra captures all critical data activity with no impact on networks, databases or file systems.
Discovers Data
Mantra can determine where sensitive data resides and how it may be vulnerable to theft and misuse. Mantra identifies the location of all databases, tables, columns, and specific types or classes of data.
Mantra is a smart, fast and scalable database monitoring and protection system with wide, unified coverage to ensure compliance and data security.
RAPID DEPLOYMENT
"Plug and Play" Appliance
Simply pug Mantra into a SPAN port and it is up, running and productive in a matter of hours. Mantra's easy to use installation and configuration process walks you through setting up the appliance for monitoring. And, multiple appliances can be quickly configured and deployed across one or more data centers, anywhere in the network, and managed from centralized or distributed dashboards.
Activity Discovery
Mantra's activity discovery mechanisms begin operating as soon as the appliance is connected to a network segment. During Activity Discovery, Mantra automatically scans traffic across databases, file shares, and the activity taking place on these systems. In just hours, Mantra has collected an inventory of databases, users, including their activity and presents this information in summary graphs. These graphs are "active" and can be clicked on to automatically generate monitoring policies without writing a single rule.
Policy Tools and Templates
Mantra comes with built-in Compliance Policy Templates that make it easy to meet the auditing requirements of standards and regulations like SOX, PCI, state privacy regulations, and others. Tools like Mantra's Policy Wizard and drag and drop Discovery policies allow technical as well as non-technical personnel to create custom security and compliance policies to address your organization's specific risk profile quickly and easily.
Flexible Deployment Options
Mantra is designed to fit into your existing environment without requiring you to change your network, applications, or database systems. Mantra designed a Three-way Data Auditing Solution that gives you the choice of deploying the technology in the way that best fits your environment. Three-way auditing enables you to combine network based auditing with either an agent based (TAP) or agent-less solution for auditing activity that is local to the database server.
INTELLIGENCE
English-Like Policy Language
Policies provide an intelligent, rule-based filter layer, capturing significant activity while ignoring the often voluminous "noise" associated with traditional logging systems. Because policy development is a fundamental component of any data monitoring and protection project, an easily mastered policy language and policy creation wizard can have a tremendous impact on the time and expense required to deploy and tune the auditing system. Mantra excels in this regard. The simple but powerful policy language can help you create and deploy your first policy set in a matter of hours, or even minutes.
Behavioral Fingerprinting®
Most data center breaches involve perpetrators who already possess, or manage to aquire, access credentials. To counter this threat, enterprises must be able to apply real time behavioral profiling metrics that automatically distinguish damaging behavior from normal activity.
Tizor addresses this challenge with it's Behavioral Fingerprinting® technology. Mantra collects and analyzes data access activity on a continuing basis, generating constantly evolving behavioral profiles for all system users. Mantra records data about each of the user's data access events—time, location, data touched and so on. As each new data access event is recorded, Mantra calculates statistical measures, like size and rarity, based on the user's preceding access history. Such calculations answer questions like, "Based on the previous 30 days, is this SQL operation statistically rare for user Anna?"
If a user accesses data from an unusual location, accesses data that he has never touched before or downloads a large amount of data when his job calls for looking at records one at a time, this behavior warrants a closer look. Behavioral Fingerprinting enables Mantra to identify such activity as it occurs.
Content Scanning
Content scanning enables enterprises to create content-aware data auditing policies that scan database and file server transactions for specific data patterns that may represent sensitive and private data such as credit card numbers, SSNs, or other site-specific data items.
Session Termination
Mantra's policy-based session termination capabilities stop unauthorized activity in real-time to improve data and database security and stop core data breaches. Mantra's highly intelligent and accurate anomaly detection capabilities dramatically reduce false alarms and non inline deployment minimizes point of failure in the network.
DISCOVERY
Identify Data Vulnerabilities and Mitigate Risk
The first step in enterpise data protection and data goverance is to determine where sensitive data resides and how it may be vulnerable to theft and misuse. With sensitive data stored in databases, file servers, and mainframes across the enterprise, locating and classifying data can present a significant challenge.
Identify Compliance Risks
Customer information (credit card numbers, Social Security numbers), employee information (SSNs, addresses, salary, and medical information) and operational information (financial data) can reside in databases unprotected. Regulations sucha as PCI, GLBA, SOX and the Data Privacy Act of 2007 require companies to protect data determined to be private, but most companies are unable to address this requirement due to the lack of tools available to find and clasify private data. This lack of visibility leaves companies exposed to significant risks such as data theft, data breaches, and other types of unapproved data access.
Find Sensitive Data At-Rest or In-Motion
Mantra's Discovery capability uses Tizor's patent-pending technology to automatically locate databases and determine precisely where critical data resides, how it is being used, and how it may be vulnerable. Whether data is at rest or in motion, Discovery can quickly locate and classify data including specific kinds of regulated data such as Social Security numbers and credit card numbers. It's automated, accurate and it's easy!
Mantra Discovery helps enterprises to get a better handle on:
-
Data Location
Mantra Identifies the location of all databases, tables, columns, and specific types or classes of data. This enables companies to build an inventory of data assets and locations as well as identify potential risks.
-
Data Classification
Mantra helps companies classify data and apply the most appropriate policies based on the type of data. For example, a class of "confidential" can be defined as any PCI related data that includes a creidt card number.
-
Policy Creation
Once data is discoverd and classified, data monitoring policies can be created. Mantra enables you to create these policies directly from the discovery reports that the system creates. Just point and click.
SCALABILITY AND PERFORMANCE
Transparent Network Appliance
Mantra is a transparent network appliance that scales to meet the needs of the largest global enterprises without impacting performance of production data servers or applications. Mantra network monitoring requires local appliance setup only—no reconfiguration on production servers, software, network or applications—a key benefit for overburdened IT staff. Multiple appliances, deployed across one or more data centers, can be inserted as needed, anywhere in the network and managed from centralized or distributed admin dashboards.
Superior Perfomance
Mantra's custom DFAS (Decode/ Filter/ Analyze/ Store) fast-path monitoring stack was architected for high-performance requirements of the largest data centers. Each Mantra appliance is capable of monitoring numerous enterprise data servers simultaneoulsy, without dropping event data during peak traffic periods. This level of performance is unique in the industry.
Contextual Data Architecture
Simply logging traffic is not enough. Mantra has the capacity to discern context and apply grammatical analysis, traffic measurements and behavioral analytics to decode and understand data access traffic, rather than simply scan it for pattern matches. The DFAS architecture:
-
Decodes data server traffic and passes all data access activity to the policy filter layer.
-
Filters out uninteresting activity, like non-sensitive data access, using a rules-based engine. For any database monitoring and protection project to succeed, the auditing system must reliably focus attention on "interesting" activity, while ignoring the potentially overwhelming flow of inconsequential server traffic and preserving the option to archive it for safe keeping.
-
Analyzes data access events, comparing them against current behavioral profiling statistics, to detect anomalous activity in real-time and to assign appropriate severity markers in the audit trail.
-
Stores audit data locally, for future reference, including interactive drill-down search queries and other forensic investigations.
-
While competing systems declare performance metrics based on the ability to indentify SQL traffic for processing, Mantra typically exceeds these simplified benchmarks for the entire DFAS process.
High Availability
Unlike data monitoring systems based on a proxy/firewall architecture, Mantra appliances are installed at the switch level via an aggregating network tap or SPAN/mirror port. Mantra is never a point of failure in your data network.
COVERAGE
Broad Data Server and Compliance Coverage
In many enterprises, critical data assets are scattered across a variety of database servers, file servers, and mainframe systems. Mantra offers the widest server platform coverage in the industry, supporting database and file servers from Oracle, Microsoft, IBM (open systems and mainframes), and Sybase—all from a single appliance. Couple Mantra's extensive data server coverage with policy, reporting and forensic tools that can be applied to satisfy almost any compliance need. Mantra comees with predefined policy templates for SOX, PCI, and other regulations to accelerate compliance projects dramatically.
Mantra Three-Way Auditing
Mantra is the only Database Monitoring and Protection Solution to offer Three Way Data Auditing via the Mantra Enterprise Local Audit Architecture. In addition to providing real-time, policy-based auditing of network traffic, Mantra also provides agentless and agent-based local auditing—offering enterprises the choice of monitoring local access to data in the way that best suits their organization's local auditing and privileged user monitoring needs.
STREAMLINED MANAGEMENT
Automatic Alerting
Mantra's real-time alert mechanisms are designed to mesh with your organization's existing information security controls. Alerts can be sent via email, SNMP traps or remote syslog for easy integration with existing SIM/SEM, systems management, or workflow environments. Summary or detailed reports can be examined at the managment console or saved in HTML, XML, or CSV formats.
Rich Reporting and Workflow
Mantra's graphical console includes a powerful combination of predefined reports and custom query tools. Automated daily, weekly, monthly, and quarterly reports simplify the task of providing the information that stakeholders need in the formats they prefer.
Mantra provides a broad range of reports, including summary, detail and incident reports. A number of predefined reports are included and Mantra's report builder enables you to quickly build and schedule custom reports. Reports can be automatically distributed for review and approval via Mantra's workflow system. Workflow allows you to automatically distribute reports to reviewers and multiple signers via email, track the review and approval process, and store and archive signed reports.
Drill-Down Forensics
Mantra's active-object reports support instant, interactive, drill-down queries against the recorded audit history, to any level of granularity. Fast, custom queries and reports are indispensable tools for forensic investigators and data security officers, and Tizor has applied special emphasis to these tools throughout the Mantra architecture and interface. If your auditing program exposes trouble, particularly in the form of policy or control violations, you can rely on built-in forensic and analytic tools to quickly evaluate a problem, limit its scope, and prepare informed notification for interested parties.
Centralized or Distributed Dashboards
Multiple appliances, deployed in one or several data centers, can be managed from centralized or distributed admin dashboards.
MANTRA BUSINESS VALUE AND ROI
Mantra is fast, it scales and it's smart. It's easy to deploy and use, and it audits all of your most critical data assets. These features can help you meet data-related business objectives quickly, and efficiently:
- Audit database, file server and mainframe data assets from a single appliance.
-
Deploy fewer appliances due to superior scalability.
-
Automate data discovery and asset classification to find sensitive data.
-
Automate compliance auditing and reporting to demonstrate its correctness.
-
Detect theft, non-compliance, or abuse of sensitive data assets in real time.
-
Obtain executive and detail level reporting for immediate visibility into what is happening with your data.
-
Provide targeted and timely reports to stakeholders and streamline the process for review and approval.
Designed to meet the needs of the largest and most diverse data center environments, Tizor Mantra sets the standard for data monitoring and protection solutions.
|
|
ABOUT TIZOR
Tizor provides the world's largest companies with the only enterprise database monitoring and protection solutions capable of auditing, reporting and alerting on all critical data activity across the enterprise data center—databases, file servers, and mainframe applications. Tizor's global enterprise customers include financial institutions, insurance companies, retailers, manufacturers, healthcare providers and airlines, among others. These companies rely on Tizor's Mantra solutions to protect critical data assets, detect data breaches and provide data-related compliance, including SOX and PCI.
Headquartered in Maynard, Massachusetts, Tizor is a member of IBM's Data Governance Council. Visit Tizor's Website at or data auditing blog at http://blog.tizor.com. | |
