NEW YORK – Oct. 10, 2006 – Symantec Corp. (Nasdaq: SYMC) today announced Symantec Database Security, a new solution that reduces risks to information stored in major enterprise database management systems. Targeted at businesses, governments, and academia it provides real-time fraud and data leakage detection and auditing capabilities to address growing compliance requirements for secure information access.
“When talking with Burton Group clients about various aspects of database security, it's clear that monitoring is top of mind. As databases receive increased scrutiny due to heightened information disclosure risk, organizations need to be alerted when abnormal activity occurs so that they can take action. At the very least, improved database audit provides the necessary signposts to understand where database weaknesses lie,” said Trent Henry, senior analyst, Burton Group.
“In just the first eight months of 2006, more than 116 data breaches have been reported, putting upwards of 65 million records at risk,” said Jeremy Burton, group president, Enterprise Security and Data Management, Symantec. “Symantec Database Security enables organizations to proactively protect databases from the growing number of internal and external threats aimed at stealing confidential information and, in turn, safeguard their own brand and reputation.”
Symantec Database Security uses intelligent profiling to provide fraud detection to build a profile based on what is considered “normal” interaction with the database and immediately alerts the organization of malicious or abnormal activity that falls outside the “normal” profile.
The solution also protects against data leakage by monitoring all information that leaves the database and alerting administrators when sensitive information such as credit card numbers, Social Security numbers, or any other administrator-defined data pattern is detected. Policies can then be built around these patterns to control what gets flagged as suspicious activity. For example, if corporate IT policy allows data for only one credit card to be accessed per request, but a request is made to access data for multiple credit cards, the system tracks this activity and alerts administrators. It also helps organizations more efficiently and cost-effectively demonstrate compliance with information protection policies by maintaining an audit trail of all activity on the database server.
“As more patients access their medical records over the Web, we must ensure their information is securely protected and easily accessible,” said Ayad Shammout, lead technical database administrator, CareGroup Healthcare System, a Boston-based healthcare group with three affiliated hospitals and several medical centers. “The Symantec Database Security solution provides us with unprecedented visibility into our database activity. It helps us enforce critical security policies and thwart attempted database security breaches—whether intentional or inadvertent, internal or external."
An intelligent and automated monitoring solution, Symantec Database Security supports major databases and is easy to deploy and configure right out of the box. It is not invasive to the information infrastructure, requiring no modification to the database and delivering real-time monitoring, alerting, and auditing with no reduction of database or network performance.
Symantec Database Security is the first commercialized product developed by Symantec’s Advanced Concepts Group. Advanced Concepts is a startup-type organization within Symantec Research Labs that is focused on building new solutions in emerging areas for release directly to a set of pilot customers.
Licensing and Availability
Symantec Database Security is currently available in North America through Symantec’s worldwide network of value-added resellers, distributors, and systems integrators. Organizations seeking a reseller or distributor should contact Symantec at http://www.symantec.com/enterprise/licensing/index.jsp.
Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in 40 countries. More information is available at www.symantec.com.