Next steps
Request a demo
Contact me
Sales
+1 (408) 970-3305
OR +44 (0)2076 499959
Download Now
14 Day Eval Versions
Hedgehog IDentifier
End-User Accountability in Databases
Sentrigo’s Hedgehog IDentifier is a unique solution to application end-user identification in pooled-connection environments that obscure individual user accountability. Hedgehog IDentifier ties database actions with the end-users who initiate them, enabling the enforcement of security policy on individuals and satisfying regulatory compliance requirements.
Product highlights
- Accurate identification of individual end-user activity in the database
- Satisfies regulatory compliance requirements for individual accountability (including Sarbanes-Oxley, PCI DSS and HIPAA)
- Real-time alerting and prevention capabilities based on individual user actions
- No change required to applications or DBMS
Application End-User Identification
Auditors want to know "who did what" on the database, while corporate security policy often requires limiting access to data based on user identity. More often than not, however, users connect to the database via applications that use pooled connections, making it impossible to figure out which user performed which action on the database, let alone enforce security policy based on user identity.
The Solution: Hedgehog IDentifier
Hedgehog IDentifier passes the application user ID along to the database and associates every action with the application end-user who performed it. Unlike other methods that use correlation and are not 100% reliable, Hedgehog IDentifier is a software component installed on the application server, which extracts the actual user ID information and passes it through the connection to the database.
Hedgehog IDentifier allows users to identify application user IDs, user IP address and URL, and by using the Hedgehog Enterprise rules engine, it can issue alerts and limit access to database objects based on those parameters.
When deploying Hedgehog IDentifier, no changes to either the applications themselves or to the DBMSs are required.
Sentrigo customers use Hedgehog IDentifier to:
- Monitor, track and audit “who is doing what” in the database
- Comply with regulations that mandate controlling individual access to sensitive data
- Enforce security policy on end-users rather than on applications and maintain accountability
Hedgehog IDentifier is an add-on to Hedgehog Enterprise. It supports JavaEE application servers such as IBM WebSphere, BEA WebLogic, JBoss and Apache Tomcat, as well as .NET application servers.
Hedgehog IDentifier is available for download when you download Hedgehog Enterprise