View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Software
January 21, 2009

Compliance-friendly Fortinet box stops data siphons

Supports up to 60 database instances

By Jason Stamper

Network security appliance-maker Fortinet has made its database threat management system more compliance friendly with monitoring features that build the complete audit trail that’s needed to clear the regulatory hurdles of PCI-DSS (Payment Card Industry-Data Security Standard) and the like.

The FortiDB vulnerability assessment system secures corporate databases, which are increasingly under threat from data siphoning and other criminal activity.

Even with the security offered by suppliers of Oracle, DB2, SQL Server or Sybase databases, it is feasible that a hacker could create a legitimate database account and create a bot that performs millions of queries, siphoning off the data.

Michael Xie, CTO of Fortinet, said: “We believe data siphoning is, and will continue to be, a real and imminent threat for corporations of all sizes.”

The system will now provide all the reports needed to ensure database regulatory compliance to SOX, GLBA or HIPAA out-of-the-box, the vendor said.

As well as fortifying the appliance, the security vendor has extended its line of database threat management systems with a couple of new models to handle more and fewer database instances than the FortiDB-1000B box it released last year.

The new FortiDB-2000B for large enterprises, supports up to 60 database instances, twice as many as the 1000B, while a much smaller 400B appliance caters to ten instances.

Content from our partners
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape
Green for go: Transforming trade in the UK

The vulnerability assessment features of the appliance range helps harden databases by detecting weaknesses in passwords, access privileges and configuration settings and will alert a system administrator of any potential threat.

Each of the Fortinet appliances comes with hundreds of pre-populated policies which cover known exploits, configuration weaknesses, OS issues, operational risks and data access privileges.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU