fhs
Volume 10, Number 6 -- February 9, 2010

Imperva and Raz-Lee Team Up for DB2/400 Security Software

Published: February 9, 2010

by Alex Woodie

Imperva, a developer of integrated security tools that monitors users and transactions from the application to the database level, next month is planning on supporting the System i server and its DB2/400 database with its SecureSphere suite of products. The company is tapping the System i security expertise of Raz-Lee Security for the development of SecureSphere Agent for DB2/400, the companies announced yesterday.

Founded in 2002 by former employees of firewall vendor Check Point Software Technologies , Imperva has focused on providing an end-to-end security solution that allows organizations to continuously track and audit user and non-user activity from the application firewall level all the way to back-end databases. Its "universal user tracking" technology works by discovering application IDs, monitoring user sessions, and correlating those sessions with specific database transactions, even if they span multiple systems.

With more than 4,500 customers, the Redwood Shores, California, company has found a fair bit of success with SecureSphere, which Imperva sells pre-loaded on hardened appliances. For years, the company has supported most major databases, including Oracle, Microsoft SQL Server, IBM DB2 UDB and Informix, MySQL, and Sybase. But there was one major database missing: DB2/400, known officially as DB2 for i by IBM. (The company also doesn't appear to support the myriad System z mainframe databases and file systems, but with several tens of thousands of mainframe shops compared to hundreds of thousands of AS/400 shops, one could debate whether the mainframe is a "major" platform.)

Next month's release of the SecureSphere Agent for DB2/400, which Imperva co-developed with Raz-Lee, will fill a hole in the database coverage, according to Limor Elbaz, vice president of corporate development for Imperva. "A large number of our customers and prospects expect Power i support," Elbaz says in a press release.

According to Elbaz, Raz-Lee provided "the most robust and compelling platform support" for securing the System i platform. With Raz-Lee's technology embedded in the SecureSphere Agent for DB2/400, Imperva customers will be able to monitor DB2/400 database activities for signs of unauthorized access. By monitoring the QAUDJRN, database journals, and ODBC requests, Raz-Lee's technology will be able to oversee all inserts, updates, delete, and read actions performed on sensitive DB2/400 data.

Of course, System i shops could have gained these database monitoring capabilities by simply buying security software from Raz-Lee or another security software vendor. The real advantage of the integration with Imperva's SecureSphere, therefore, is the capability to correlate and track changes in DB2/400 with activity occurring at the application level, in other database, or information gleaned through vulnerability assessment scans, which SecureSphere also provides.

The inclusion of DB2/400 support within SecureSphere gives System i shops some powerful new security capabilities, including protection against SQL injection, cross-site scripting, and brute-force log-in attacks. The company says "dynamic profiling" technology learns the structure, elements, and usage of sensitive Web applications, thereby enabling the software to quickly detect malicious activity.

The OEM agreement is a feather in the cap for Raz-Lee, which has been coming on strong in the System i security space lately, as well as Raz-Lee's CEO, Shmuel Zailer. "The choice of iSecurity by Imperva highlights Raz-Lee's prominent market position in the area of Power i application security," Zailer states in a press release. "We were able to provide Imperva with a complete and comprehensive audit trail of Power i database activities and all related information."


RELATED STORIES

Raz-Lee Adds Object-Level Security to i OS Security Suite

AIG-Israel Taps Raz-Lee for i OS Security Tool

Raz-Lee Jazzes Up its iSecurity GUI

Raz-Lee Summarizes i OS Security Settings in New Compliance Product

Raz-Lee Eases Compliance with Update to iSecurity

Raz-Lee Targets U.S. Market with iSeries Security Tools

Raz-Lee Developing Native iSeries Antivirus Software


                     Post this story to del.icio.us
               Post this story to Digg
    Post this story to Slashdot

Sponsored By
COMMON

COMMON 2010 Annual Meeting and Exposition

Mark your calendars and register today for COMMON's 2010 Annual Meeting and Exposition in Orlando, Florida, May 3 - 6, 2010 - COMMON's 50th Anniversary Celebration!

The Annual Meeting is the largest gathering of the Power Systems user community and COMMON's largest educational event of the year, with four full days of in-depth IBM i and AIX education that includes all-day pre-conference workshops, all-day Integrated Seminars, open labs and a wide variety of regular-length sessions.

Browse the world's largest Power Systems Exposition, encompassing over 80 exhibitors, including IBM. It's a one-stop source of up-to-the minute information and ideas for the IT industry. Discover what's new in the IBM i and AIX world and give your company ways to reduce costs and improve productivity.

Benefits
The COMMON Annual Meeting and Exposition is the premier Power Systems-related educational conference and annual meeting of the COMMON membership.

  · Provides four full days of over 300 educational sessions on IBM i and AIX-related topics.
  · Variety of educational formats, including all-day pre-conference workshops, all-day
     Integrated Seminars, open labs and regular-length sessions.
  · Most cost-effective conference option for your 2010 educational needs.
  · Largest gathering of the Power Systems user community.
  · Once-in-a-lifetime opportunity to be part of this organization's momentous 50-year milestone.
  · The largest Exposition of its kind with over 80 vendors present to supplement your education.
  · Extraordinary networking opportunities - have fun, learn and share with your peers,
     renowned speakers, IBM developers, executives, and fellow members.

The Annual Meeting will kickoff on Monday, May 3, 2010, with the Opening Session, which will include a special message to the attendees from Sam Palmisano, IBM's Chairman of the Board, President and Chief Executive Officer! The Opening Session will also feature a keynote address by Rod Adkins, Senior Vice President, IBM Systems and Technology Group. This is an unprecedented level of support and recognition of COMMON from IBM with representation at our 50th Anniversary Celebration by IBM's two top executives.

This will be followed by four days of leading-edge IBM i, AIX, and Linux-related education, closing with the fun and exciting Power Down - Main Event set in a '60s theme on Thursday, May 6th. You can also add some community outreach during the Annual Meeting by taking part in the COMMON Cares second annual Charity 5k Run/Walk and/or the COMMON Cares Blood Drive - both benefit the Florida Blood Centers.

The COMMON 2010 Annual Meeting and Exposition is the premier educational and networking event that you and your team will not want to miss.

Learn more and register today www.common.org/annualmeeting
Editor: Alex Woodie
Contributing Editors: Dan Burger, Joe Hertvik,
Shannon O'Donnell, Timothy Prickett Morgan
Publisher and Advertising Director: Jenny Thomas
Advertising Sales Representative: Kim Reed
Contact the Editors: To contact anyone on the IT Jungle Team
Go to our contacts page and send us a message.

Sponsored Links

SEQUEL Software:  SEQUEL is fast, efficient & cost-effective data analysis
DRV Technologies:  SpoolFlex automatically converts reports to user friendly PC formats - FREE trial!
COMMON:  Join us at the annual 2010 conference, May 3 - 6, in Orlando, Florida
 

IT Jungle Store Top Book Picks

Easy Steps to Internet Programming for AS/400, iSeries, and System i: List Price, $49.95
The iSeries Express Web Implementer's Guide: List Price, $49.95
The System i RPG & RPG IV Tutorial and Lab Exercises: List Price, $59.95
The System i Pocket RPG & RPG IV Guide: List Price, $69.95
The iSeries Pocket Database Guide: List Price, $59.00
The iSeries Pocket SQL Guide: List Price, $59.00
The iSeries Pocket Query Guide: List Price, $49.00
The iSeries Pocket WebFacing Primer: List Price, $39.00
Migrating to WebSphere Express for iSeries: List Price, $49.00
Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
Getting Started with WebSphere Express for iSeries: List Price, $49.00
Can the AS/400 Survive IBM?: List Price, $49.00
Chip Wars: List Price, $29.95
 
The Four Hundred
The Power7 Rollout Begins In The Middle

The i/OS Roadmap Revealed--Sort Of

The System iWant, 2010 Edition: Blade and Cookie Sheet Boxes

As I See It: Blurred Vision

IBM Goes Live with 'Software Value Plus' Program for Partners

Four Hundred Guru
What a Lifelong DB2 Fanatic Sees in MySQL

Read a Save File

Admin Alert: Did You Lose ECS on February 1?

Four Hundred Monitor
Four Hundred Monitor's
Full iSeries Events Calendar

System i PTF Guide
January 30, 2010: Volume 12, Number 05

January 23, 2010: Volume 12, Number 04

January 16, 2010: Volume 12, Number 03

January 9, 2010: Volume 12, Number 02

January 2, 2010: Volume 12, Number 01

December 26, 2009: Volume 11, Number 52

TPM at The Register
Power7 v Power6 - it's all about the cache

Power7 - Big Blue eye on UNIX

Netezza taps NEC for data warehouse kit

Reg HPC CommunityEuropean Commission pays IDC to take a hard look at HPC

US economy sheds 20,000 jobs in January

Cisco's California sales on the double

Big iron bolsters Q4 at Unisys

TPC adds power suckage to benchmarks

Intel sneak peeks Westmere EP server silicon

Unisys lands $187m Pentagon mainframe deal

Makara's do-it-yourself platform cloud

SGI biz still kinda lumpy

THIS ISSUE SPONSORED BY:

BCD
PowerTech
Profound Logic Software
COMMON
RJS Software Systems


Printer Friendly Version


TABLE OF CONTENTS
Robot/SCHEDULE Gets New File Transfer Capabilities

UC4 Extends Job Scheduler to SaaS and Cloud Apps

Source Technologies Now Supports System i with MICR Printer

Imperva and Raz-Lee Team Up for DB2/400 Security Software

dcLINK 6 Delivers Warehouse KPIs to Smartphones

News Briefs and Product Shorts:
Information Builders Updates RStat Data Mining Tool . . . Louisiana Bank Relies on IBM BCRS for Disaster Preparedness . . . Cetova Provides Reporting Advice for JD Edwards Shops on the Move . . . Minnesota Government Group Taps Unitrends for Backup Appliances . . . IBM Focuses on Information Governance with New Software, Services . . .

Four Hundred Stuff

BACK ISSUES




 
Subscription Information:
You can unsubscribe, change your email address, or sign up for any of IT Jungle's free e-newsletters through our Web site at http://www.itjungle.com/sub/subscribe.html.

Copyright © 1996-2010 Guild Companies, Inc. All Rights Reserved.
Guild Companies, Inc., 50 Park Terrace East, Suite 8F, New York, NY 10034

Privacy Statement