|
|
|
AppRadar 2.0 Detects App-Level Attacks
By: Dennis Fisher
2005-02-07
Article Rating: / 0
There are 0 user comments on this Network Security & Hardware story.
Database intruders, beware: Application Security's AppRadar now protects Oracle databases.As attackers continue to move beyond Web and mail servers in their search for vulnerable hosts to compromise, security vendors are rolling out advanced solutions designed to shield sensitive databases from application-level attacks.
Application Security Inc., one of the first vendors in the space, will introduce Version 2.0 of its AppRadar product this week.
The solution provides intrusion detection for databases and has the ability to detect illicit operations conducted by outside attackers as well as authorized users. The major addition is support for Oracle Corp.s database products. The previous release was designed to protect Microsoft Corp.s SQL Server offerings.
With the inclusion of support for Oracle, AppRadar now has both host and network sensors to detect attacks. The host-based sensor monitors SQL deployments, while the network sensor is for Oracle databases.
AppRadar 2.0 has a wizard-based interface that lets customers create their own security policies and specify which events or actions will trigger an alarm. Those policies can be as granular as the administrator wants, down to the level of user access.
"The granular monitoring of customer-specific policies is what really sets this apart," said Ted Julian, vice president at Application Security, based in New York. "The customer is the only one who knows what events are really important on his network, so he needs the ability to set up policies to watch those events."
For many enterprises, those policies will be aimed at preventing administrators and other insiders from taking unauthorized actions on the database. Because AppRadar monitors all the traffic to and from the application, it can see any action and stop it or trigger an alarm.
 Click here to find out why some IT organizations are turning to smaller, third-party developers for new internal auditing and monitoring tools.
In addition to the custom policy feature, AppRadar 2.0 comes prepackaged with policies to check for compliance with the auditing and security requirements of the Sarbanes-Oxley Act and HIPAA (Health Insurance Portability and Accountability Act).
AppRadar can integrate with the companys AppDetective vulnerability management solution as well. AppDetective inventories all current vulnerabilities in a database and can notify AppRadar whenever an attack targets a flaw to which the database is exposed.
If an attacker attempts to exploit a vulnerability to which the application is already immune, AppRadar can simply log the event and produce a low-priority alert instead of raising the full alarm.
AppRadar 2.0 is slated to be available next month.
Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.
|
|
�������x}r۸j�9km�]mGJɶ�kŶ,%L*�EB��!);9�e��oВ/q*DFh4��y$sW7-gL.\sfS;uA@
Y>%7>{�'((o��1m�n�f](� _h���7wGlJ{#AT�1�v�RM� Ɠ5X1 |+[S}L��q~qlv�.hvLIl/G5t�uGpnFA|�Qχu)t�(D>-Dm:\'�w*GUn�Spca_ʞ��y5"h4"j��;^����z~;L�08o`T�K
<[��@Sա*"U�{Q5hw��/E� /B1r!f-{4�M*-�D�FL$�E$�f�=��Qw^C]õ]��Z.R͌e�:o� tG
ob=u�ק&Y!
.�$g�>�N֟GBԿRK�8VR=/y�
y�=@q�(r�_7P7nǾ;s�2W0Q(9a�&�ԃ �P2zhN-2Q@\�dY7;�Ͱ-P6CMT�jR?tފWcm9�NeW4[ѾyK\(�U?
n0u�h;\CJ}�u=�yؼ8sDt8���YHM~c/DJ V4D���Rc�j�g`�rM7Jq߸+~ISC �40"�J�1~̢>2Q}?-~k~>E,�3SA4
̠+`W+�e`9=y\toz{MN�;�'w�:�R��ڟ�+̪/k*kup}�6O{uH<���kh�`c��R^ٗ[d�NOWm2 ᭫�GcRdt,'�Y��u'P[,/��RrZT|Y|ԛE34�i[��2)�ߖI@7�-�:u
�v��Hm҄&
�9B:%̺k�R�49�(��蟉$�m�4�@r5)6B̄H )WR�_�,-|y"�b�r�ݠHPs>̧+foF">��ef"ȅ�Q.%M���
g�|�8J�Ku=ba�U<8z�Zo֖͉*]X[u5jZl�E?iYwθyn?\OH{⧋vz׆)WI��F4�,h�eݴ�s榣V'cW*P\?,Ëʾ��b�(7ZdL��,��5,{Lt차�緳p:� 0h��v?S�Oiͦ89y��t$�ࠣM�/�G˥yf1�@�
L�n0i��+�OݺzL^TŞ�+L�Кk�}0#��E�6� &>v�P`�2��Zw�9ܻ-L&w��0�`Dy+лCi�`y1�&=��զA�{ �Tgx3��=w}
�
�{`� ��5�#~[-[�Z6x�O͙A Q�|#sZ(�7^`���""D%� R
h��4�A�G�EBENA7gw$]Vi+RaD4�T*nO�u$cwV*+esRأXB�Y�X/E_R�23#Cdɬa���X�91{M�f�T`"[ᛥDKa�k`FX,CMۯ!M{�ڣeXc�}= 3̲M҂%�Ll;!9?f! s WQ�'�:� x�BoBCEs;J`|Ͱ"̴b֜�Eu4>�du �4��ƉeLH|��B3} H8M{lzΐ=϶Y$tu�K�\w;u`漇�d:Nk'hm7?>y@O-\n�GhIO3_hy:grGֶ-�� ?W*|�zS.z:ԍ$�r%��5kb�$T`CL
�<�y"N{�
+kM'WQV�{)5_�VT�V3�Q2��C+�L)Eۋ�)i
SX-�8G/4- {e]Zr{AE/KƠR�_/
B[+�Ҟ� K
�rL%���kZԕ1�%/D�4$"]
`8V�"�Cɧ8$&le6L�E6���b8`O��7l{`(`R5 Ȕmm1+Ւ9,W�fn
����(��)r?-j5�fSXS:h�M>^�!O\?C�C��|�pd`/R=:¿uouj�)ՃI�,ǒZQJ~&�[�b"�ud\6˰@e�ִ
&;rm۽'�zfdݙ(�yR+rf!9�Q4U�$\���
ؕGQv�Pc6ư�5wp���H}�[Lݡ��\wlSIB?�OKRM}'Xk5�E��}c"�IVtxGCF� ;Ez�.
�ZC��Џ0�BrIaj H"ԫ5�H`mR@;kRUtr�m�W݂�?I B�L!2B�3�ݧ==1g��匬~`"; h�RP�ZUU+òZp~W`q�,(8L 5{�N۩��{1�0v��ȿ\����wkq�5\`EYۇY}n)�rdd8+ѡ,X���r]TՑnR
U�����tT#� ����vo��(0f�f{B[�
P{I-~O9b����:skh�豸<
QB|�5F8b&�aj4X[�↪%}g���{�R64F@�2<"C��8\�vl:��ӁZFB -Қ8�k*�~SUe@5iJ1k�%
=EZ]ı�)&%j�ĮOm�$o,�yJu8e3 +S`e3*~���~h��KJ]��ad|?T\S=@Q�>}ݤ1p
Nu< H>JcO� NnZTrTS+JJЛ'Q�C.'%��/&h�e~�6%Kf?ͥ�Z5?c�D�sB��x`fK�ܥ��@vܖ�[J,]@>
Ba
u(
=6Q;o]!�c̞Òf&S,�.ҞIG:��-e�fόT)�U :.izIROpӁ9tGl~"ڊ tĽ%d:)dnQ==![^H���&|ݙ���adJ�P5�]�Uj;? 1�4!`0\V+{)�,%~O9@`�|ZUj��rF2�2@BZA$d1~&L{~;Atf;� {Hڝwg8� ^xw\j\#-0M��H˓�rH`uԹhk0.[�ltJj2�m&A)��pd��?{5�ճ2b{:9\;ѳi?`�y B+G~{!\u.ŗ,5?wH;m)u�߽�o= rHp'Bjw]�$'d�0
s|n]G'��7b��`[&IEy=SW5C2�xΰ�;�h`/5g��^|��\i\5�g0�T
pm7Z��kΊG0
V�`!���1t|PVC� (ʡ��H��R
~tIwu���.V_d�@A�48�XS�(+RJ�"4FYO |�N�g
<�@�9FghDu~iGn/Er�}#�fax!wl 8B@ɠSN�M(�IZ[`beanKl�x0e�R蔈'='C8
z>RB'Դ5˓4/iY(Eqjhd�ꒈ~�~(i&'ءX�ԛ�].7'8
$O
kzisq/Xki-�jշΫ؉���lj9l01�!t�Q^�rVT�Su&ԱOH1D:n;��WQ杊^Y �]s>�ͥ=�`L̴M\g�w�h�NPD(Vp9c�㻞P�a�*/q)y\'k���@"@�{�.ۥ{H?wV5BĬxBwdO>^jѼc*�`��A�AXŀ0!V
lϸG
s�}x�2�HC%��6÷Cw#�S�''Sc3HF#xg��y(6-lF�@|Pذ�h](0q�aj}Z'OIb��wl['GG鎿Z7�{cE�|3̕
u�\ KMU_r
w2� |cM%�9&p$~=3q� DɛxQx3e\ڊ�]�aKn~�'Vz/wip8�qsCA-tcO�X=,k�Gg�6_�P�tj9��'!LB��ʾ�ӫ�UC̶ɘy<��<�@~D4BNX�6��AE<�yk�uA9b;�ܸ*Rp�w�Z0}HE�sVbZ�t�zp'2a@�c!וP��xL�,xp�P� 7}Y%�?g�rm�l1t]A$�Oj&,ws�DY��b#��:K2lb�̽r� ׄ@��\JZ19wh8MymY2DZ8�!�m%?�ۊL->Nkbb �>b;|r-,WxJTVtIt+lU%^A
�(uZ�s�nϩ^R+I>ٳsZ�!3 ȃu@R>#373?O{Oٍ+/�:[�L<��fbB9d�
dݦ~83N(*+�.�e5%�z�\�g��^�fE�EpH({gj3b���(!y)�^Š6o4@zz'�J5�~ĶbZ�uz@�8gh/x%ht%)]K%E6�#E�,8�n ԟйO;Ԕ'.}p@"TT��#D�%z@8P".deDI��TiJT�R4� bw@TB�_尠,-~�
� �H::&�A:S mm},}�0;=eԛyRR1(֎�����H)>#�>a '�őCJOLioŤJZyS&-=�&�4:>m�K-]Ax�S2*8�p$�=���y
�M�a���Ö�8�UK�,S|/ɭV�ANrfZW�0W��F^Wj�)+Z�K�O�8$�~]�U0�`n7=7rS幸)�:`ݝTHQ�Pq�<Tc[�&MYx��!��D8�yN(o8|DpbABc"]=�8XUv8,oD��G�8��n=�t_O��lI݊ʒRJꦬT{vmr`�H& 2^nxk1c PFh��B
]�XI��Kl[yׇZi�ð�q2�8������~~~~y/mEjӽz�gf7�+; ۅ\Xoa�mjR�S'�H"LTQ0QEc�`�G#I@V8'�E�r)��&�-.�N況ڐ+_¿.�wYH��m'@'`a;\�R��}̺(8rǶf՜y�C$�� @$�"I rIF%/~�r(h
5<��]�t�-s0qR�xz"DH(��AHD@J��h }=
4�24�҆\SBv<7]> -XMAx�- =Mb�n�247!Ծ��vwz�[eR�mkLTj}XA��Q|��`�v�tbRmp,{"՚�f
s~s~s~s~ߚW6n)earMC�B�pɭ6i_8qUOR�74z/%N\�ሲˠ00Ga͡:�tm--z6ؓ3o+5 ~�З�tܹU-qK:s]5z �K;�1,qۅKwI7�t7�^:/�[ǿ�*��8#{6,]��)~6B;D�DR��/yqh,oMX{s73�l�@
:�B2pLlRv���M�wyVk»�"��X�a}M3�&8[�;k}TQy0tW��<
h.s|8���ZV�f
`_uWD+x(E.Wҭ�u{rn�Wy��˿�Kj� d/p:�\Ϝ�O�)0Lě%��\w�mYï^I,Pk3"{A��[�o�f6௶aulau+^�g�k$/�*gEN;u^)K~jhk�>Kmrb�lD�`lï^�J�Y�f-eĚ_Q+i�錃ql
f,fS&e<'
l~�m%�=d�^�98X"O}kҽ�>u]�g�;2_)P:>kAegK�/I8O:߸%-?ԅ(p��+M�bW{[� �\�n�O0]��`�k('>?�H5>Zۏo�?�
�b+]L5|5ձ�
�u8�=dWd ��*P]ݣ�A\ۦ;RDn|��Qk":]Ǖ�PVô�"Ʈ"��Jf��adW_}$ƽ.l�E߽gLD�h�GX�o[���a(_^�3VG�B�A8A�XJXDJ
�Ň�ہG �K&5\I�(#db3, YfK�c.=ZMWWK.��`��܋%,-c
2^X!tOHkxq<�vlNz
ԣ:BMp7TU"j�%�gxI�-5֠C'�lGK<)fF<�@��Lu�j=!vkC`.Z�.қ≡37:QS��;'7Ƅ,-*);,UB%-ŝR)y�@�!d�Z�l3LµOA*d�8I�Vuק6:F�̽OeMĐojU9JJEV^�Ӑ/]YkJMU01}2ȉA,5:MQZ#�){a�̝K��\�IG:Vgy畊V.իuߞz!,�5)l}kJ�%.`G�V$��؛�~v/[qx92|�a>8�(�-^`̷𥳐vg�Jx�v24E�͎AZ,}�^Q�"�c,{:9Qt�9S�F;1뮒tڤJ3>нgJB�Y�w�r}sι}?scޅe*�-^`�yo+ZKɶ8+.�iJ %'0�99�ݱ=�X(ytzG*_[G�J�zVOz6ވ۳j
SO
zJ�x`Xi�jJGh-;Q�o2YxF| E3&{�Sx�cL��W<00t#PγjN�T\֏pY�}XC3 L�_^\}RVWv_�r�]�*��6�;mBl�Ц!���toB`(xӅ��UI٫T~�Nѻ/�|�T�3/b#-Ѩ#C
/>a�|$wzS4�\ix##��k3`xl1�Ahb#�����HB0\6K�꜓M{a�Ȑ(3�2��j`#K:;�`at`�Sc�}s�6�uE)�d&\!cPx- rH8G@[Ѿy}S�1";9'0�ឩU-2ȘhD
MQ VHxLir��tv$%"�&L�s6@@P0H4�o<\xSۈ��(��0�װ�Þ�q!xo8}|v�[/� T6!�1�gOiX$_@1J�B7�H"`Tq:�PN�e��E�t�0��7���
1C�x*^jJF�K��s�71��,0
@u�A"�\2,�Gza~2?y
:�?0͆S+Ą f)�u^
n9
:j�eO�g�>�{0u�.)s!aZ;:NQ��B�<ⱴ�P��<'�/M=7,X��zob� ���@�h),f,�՚RD&u]��!2,�S�j%u<^(A@�lyhVտ�D%�0M镬B*�^���Ȉq�/w4�}�:��1b���/?5iv>�;WN�ϻ7x
Z[4z��u+t'WN;e1 Kyl2_T
Q�9l]28S3&$\h�^E�<�^;K#飱8��&�՝(���.!j�b\ũ2M�?^z�[''^O˧VRk!?=@Vʼnt,9y��(Shu֗wN
IN9�3˜r^S ?/?�9ak^�"��"�>"�@�\@/r�yß��92zˏP1�r�)r�˜�̑K�˜��9�_?r
y�:z^N{^N��?/�!>BǼrǜ}�}̡
�
M�:Iʙ#g+\8=J��W
ͣ�~TA__�y+%iN>質�9�+f7_ʡsTh;U_/Gޫ@O ~odnldҹ:�R+��]q%>=-{ᘴ[˺�r}ח:
c|U$X2&A�����)htVydSr�byeÿVRRw;]�Cڤ\��su5m�Rr-Xѧ�cZ?Ś/�Yy8�*
u�=�},}ND1�K�AF0��GzʉnS'��/e.o� ��pjـ@ @9z_�\�pm`nK, �4�O��W: iMog.O\v�<2kݫ++c+p'k͠~�%k"M^���@&LZCw�J�X&5$W�!Z�7|SU�rߡQ�x]1<:,ed`�['ՃoB 0 hJ/.ݳ�xy��K�Q,V3sd�J9=bՇ.t"��C4|�3_0�t Ccjd1Mk��+#�P<�����ՍPKcJ]����9̓0pq�aV$|v�/�G�<&l��`���CE<94�#(ـħ�%IAf�:2���_ =4cV\Rs7��Dё:4��.pp��N甽��aCm5�u;WeԦu"v{���C/Ռ>�>V@UݹpaHz��ƣ�,h�:"QF{��W�v,='�IDOj���ӦUM$fP�?�zGmÜ�z)JJ)@bފRΥJu�LխVoU��7Q�= V?=;I~%�B+*O-sD�<�>K:S3U1ւ�_�/gз�/�K{KV9�(�(&�]�a1W%$}�HRݤ_[=$sDJrE�)ߠ(b/<%����*`>�.�X&"�>6�LN�>�Ncc�? `�vwj9:_D2R*4%NSЌ�xc:xE�y�?��#��M��خ;O�q^G�t#>&�rd{Ko2r1$+nvG�T
'7>��5'ك|2p6�3`�ܐ}olI
�C_x��r:���Y W�)6E7[ +"���
�
KmӴ1u¥"UXJNR��X,8.# k,�;>�Ba2\�H��xky�f�%SWJP'jdVxv�͆�LV�e؋$|�
_�[0~X��+m˕bA<\B�7tl%Ng�sZ�#_��H�ʶ�u*|�X^c �0У,*0��8u
vKѪ
v�7"�`a�^o1n,$�&@�S��r=V*)v�e�6r!*l�XGڦZ-Qa[�An`Pm+��A\X3'5c��b@8f�{9r�W=?5z��l�3Ga:9Y:}#s!? L�nH2m�^^kti�(�aa��vX�e31C7Dn0BrH
d[H_مu�v3�\j��/�YH~1
���<9�9�.@OI"cXM1}a`�|1GtƙW#.r��+?�aMd�t^�kh?X�i/.:�xH%H}Sw=
aFK;O�(Uƥ2yw?XQ|=^'`gh-/=j�wpy"E�m9EKB^ �T>Vurҹ| Con��3�g�~�oU��A,jU
z' l5m�26HZ�\ɾR6vFًᷞfSذM�*d.%r�R�⊫+ųiS}*
Cf'ʾ �w�6�6BKslt�6�1�͝�z
6+��
|
Network Security & Hardware 
