Page 197 - Cyber Defense eMagazine Special RSA Conference Annual Edition for 2022
P. 197
How to Stop Data Exfiltration and Data Breaches with Deep Packet Inspection
Protecting encrypted and unencrypted confidential database data is much more than securing
databases, operating systems, applications and the network perimeter against Hackers, Rogue
Insiders and Supply Chain Attacks.
Non-intrusive network sniffing technology can perform a real-time Deep Packet Inspection (DPI)
of 100% the database activity from a network tap or proxy server with no impact on the database
servers. The database SQL activity is very predictable. Database servers servicing 1,000 to
10,000 end-users typically process daily 2,000 to 10,000 unique queries or SQL commands that
run millions of times a day. Deep Packet Analysis does not require logging into the monitored
networks, servers or databases. This approach can provide CISOs with what they can rarely
achieve. Total visibility into the database activity 24x7 and 100% protection of confidential
database data.
Advanced SQL Behavioral Analysis from DPI Prevents Data Exfiltration and Data Breaches
Advanced SQL Behavioral Analysis of 100% of the real-time database SQL packets can learn
what the normal database activity is. Now the database query and SQL activity can be non-
intrusively monitored in real-time with DPI and non-normal SQL activity immediately pinpointed.
This approach is inexpensive to setup and has a low cost of operation. Now non-normal
database activity from Hackers, Rogue Insiders or and Supply Chain Attacks can be detected in
a few milli seconds. The Security Team can be immediately notified and the Hacker session
terminated so that confidential database data is not stolen, ransomed or sold on the Dark Web.
About the Author
Randy Reiter is the CEO of Don’t Be Breached a Sql Power
Tools company. He is the architect of the Database Cyber
Security Guard product, a database Data Breach prevention
product for DB2, Informix, MariaDB, Microsoft SQL Server,
MySQL, Oracle, PostgreSQL, and SAP Sybase databases. He
has a Master’s Degree in Computer Science and has worked
extensively over the past 25 years with real-time network sniffing
and database security. Randy can be reached online at
[email protected], www.DontBeBreached.com and
www.SqlPower.com/Cyber-Attacks.
197