DB Networks Introduces Industry’s Behavioral Analysis-Based Core IDS To Detect Advanced And Zero-Day SQL Injection Attacks
SAN DIEGO – Oct. 23, 2013 — DB Networks, an innovator of behavioral analysis in database security, today introduced the IDS-6300 intelligent security appliance, the industry’s first next-generation Core Intrusion Detection System (IDS). The IDS-6300 leverages patented behavioral analysis technology for comprehensive SQL injection intrusion detection and defense – uniquely addressing SQL injection issues that have plagued the industry for more than 15 years. DB Networks’ intelligent security appliance delivers advanced and Zero-Day SQL injection attack detection with the industry’s first Core IDS that combines behavioral analysis and advanced continuous database monitoring, addressing specific compliance requirements within regulations such as PCI DSS, HIPAA, GLBA, and NIST spec 800-53.
SQL injection attacks remain an unsolved threat to enterprise databases and their critical information stored at the core of the network. The Open Web Application Security Project (OWASP) continues to rank SQL injection attacks at the top of its 10 most critical web application risks. Current techniques using signatures and black listing require time-consuming and error-prone manual updating, and are not effective against database hackers who obfuscate their SQL injection using Advanced Evasion Techniques (AET) to conceal their attacks. DB Networks is a pioneer in applying behavioral analysis to identify rogue SQL statements, and today’s launch marks the industry’s first IDS using behavioral analysis in the database tier.
“The way the DB Networks technology analyzes transactions is fundamentally different than a signature based technology so the capacity to identify an anomaly is significantly higher with greater accuracy against false positives,” said David Monahan, Research Director of Security and Risk Management, Enterprise Management Associates, Inc.
In addition to delivering the industry’s most accurate SQL injection attack detection, DB Networks’ new Core IDS solution’s continuous monitoring also adds the unique benefit of database discovery for organizations. Also, its ability to parse and analyze SQL statements offers organizations unique insight into the SQL statements being created by their applications. Coding issues are rapidly identified and traced to their source where they can be remediated.
The IDS-6300 works passively in the core of the IT infrastructure and is operationally transparent. It creates multiple unique models of how an application creates the SQL statements that it sends to the database. All SQL statements are evaluated against these models for proper behavior. Any SQL statement that deviates from these unique models causes the system to alarm in real-time. The behavioral learning and model creation is automated, making it much faster and more accurate than manually generated signatures or the tuning of signatures to suppress false alarms. The IDS-6300 typically takes a day or two to establish all learning and models, while other solutions can take a month or more.
“DB Networks has responded to customer demand to deliver the IDS-6300, building off our pioneering innovations around behavioral analysis at the database tier,” said Brett Helm, CEO of DB Networks. “Today’s launch addresses an unmet need in the industry to identify obfuscated weaponized SQL injection attacks, and is a requirement for organizations to have real-time evaluation of the situation.”
The new solution is delivered in an easy-to-install intelligent security appliance, which is installed on the network connecting the application server to the database server. Typical set up takes less than an hour, and the solution works non-obtrusively off a network tap and doesn’t interfere with existing security infrastructure.
Availability and Pricing
The DB Networks IDS-6300 intelligent security appliance is available today from DB Networks and from authorized resellers. For more information, see www.dbnetworks.com/products/IDS-6300.htm. Pricing starts at $25,000 and goes up depending on capacity needs, with volume discounts available.
About DB Networks
DB Networks is an innovating behavioral analysis technology provider in the field of database security. Developed for organizations that need to protect their data from advanced attacks, including Zero-Day attacks, DB Networks offers effective countermeasures against SQL injection and database Denial of Service attacks. Database attacks happen rapidly – in a matter of minutes – and bypass traditional perimeter security measures. DB Networks’ unique approach uses behavioral analysis technology to automatically learn each application’s proper SQL statement behavior. Any SQL statement dispatched from the application that deviates from the established behavioral model immediately raises an alarm as a possible attack. DB Networks is a privately held company headquartered in San Diego, Calif. For more information, see http://www.dbnetworks.com, or call (800) 598-0450.