Application End-User Identification
Auditors want to know "who did what" on the database, while corporate security policy often requires limiting access to data based on user identity. More often than not, however, users connect to the database via applications that use pooled connections, making it impossible to figure out which user performed which action on the database, let alone enforce security policy based on user identity.
The Solution - Hedgehog IDentifierTM
Hedgehog IDentifier passes the application user ID along to the database, and associates every action with the application end-user who performed it. Unlike other methods that use correlation and are not 100% reliable, Hedgehog IDentifier is a software component installed on the application server, which extracts the actual user ID information and passes it through the connection to the database.
Hedgehog IDentifier allows not only to identify the application user ID, user IP address and URL, but using the Hedgehog Enterprise rules engine it can issue alerts and limit access to database objects based on those parameters.
When deploying Hedgehog IDentifier, no changes to either the applications themselves or to the DBMSs are reuiqred.
Pricing and Availability
Hedgehog IDentifier is an add-on to Hedgehog Enterprise and is priced at $5000 per application server. It supports JavaEE application servers such as IBM WebSphere, BEA WebLogic, JBoss and Apache Tomcat, as well as .NET application servers.
Hedgehog IDentifier is available for download when you download Hedgehog Enterprise:
Download a free 14 day evaluation of Hedgehog Enterprise with IDentifier
|
.gif){kind=small}
