ActiveBase Security helps implement preventive security policies to protect data without modifying applications or databases. It masks, scrambles, hides, blocks and audits data accessed by outsourced teams, developers or external QA to comply with regulations like PCI and HIPAA. ActiveBase applies rules based on user context to dynamically mask data in real-time, protecting personal information from unauthorized access across applications, databases, and tools.
Oracle Database 11g Security and Compliance Solutions - By Tom Kyte
Security Quick Tour
1. ActiveBase Ltd. All Rights reserved ActiveBase Security™ Quick Tour Learn how ActiveBase Security™ helps you implement preventive security policies to protect application users from accessing confidential information, with no modifications to application code or changes to the database. Learn how to mask, scramble, hide, block and audit to protect data from outsourced DBA teams, developers or external QA. Get quick compliance to PCI, HIPAA and other regulations.
2.
3.
4.
5. ActiveBase engulfs the true meaning of Enterprise Security Intelligence “ ActiveBase is a Pioneer in Dynamic Data Masking” Source: Gartner
6. Control access, audit, alert, mask/scramble or block when personal information is accessed by: 1. Business Users: Part time employees, offshore workforce and business partners - restricting their access to business applications, training and reporting environments 2. External Users: SQL Injection, CPU vulnerability 3. IT Users: Production support, outsourced teams, developers and DBAs. ActiveBase Privacy Protection solution
7. ActiveBase Privacy Protection solution Control access, audit, alert, mask/scramble or block when personal information is accessed in: 1. Production environments : CRM, ERP, HR Apps, Billing, Datawarehouses, Training, Clones and replications 2. Non-production: development, QA, UAT 3. Public & Hybrid Cloud
8.
9. How does Dynamic Data Masking work? Business User application screen Database Role-based anonymization and real-time prevention while maintaining operational efficiency across environments Select name from table1 (2)Select substring(name,1,2)||’***’ from table1 Dynamic Data Masking Layer applies real-time SQL Rewrite rules Application screens and tools used by Production support, DBAs, Outsourced or unauthorized workforce (1) Select name from table1 Values presented: BL**** JO**** KI**** Private Information stored in the database BLAKE JONES KING Values presented: BLAKE JONES KING
10. Define once, apply on many- restrict access per "table” “column” or “cell” across applications and tools ActiveBase Ltd. All Rights reserved ActiveBase Ltd. All Rights reserved ActiveBase rules enable anonymizing personal information within business application screens, shortening implementation time to DAYS!
11. ActiveBase Ltd. All Rights reserved ActiveBase Ltd. All Rights reserved ActiveBase Security anonymizes Names, account numbers and other personal information dynamically when accessed by unauthorized users, outsourced and IT personnel with no changes to databases or application source-code
12. ActiveBase Ltd. All Rights reserved ActiveBase Ltd. All Rights reserved Masking PII in every language Customer name is masked from the production support team
13. ActiveBase Ltd. All Rights reserved Masking PII accessed by development and DBA tools in production and training environments Names, credit card numbers and salary data are masked using ActiveBase Security
14.
15.
16. Two optional ActiveBase deployment strategies DATABASE ActiveBase Process Option 2: Dedicated ActiveBase Servers act as hubs for multiple apps Option 1: Install on Database Server DATABASE Adds an additional security level by acting as a Database firewall on the DMZ, enabling network segmentation between users and the databases DATABASE DATABASE DATABASE ActiveBase Business applications, reporting, development and DBA tools DATABASE DATABASE DATABASE ActiveBase Management Console Central ActiveBase Audit and Reporting database
17.
18.
19.
20. About ActiveBase > Founded in 2002 in Israel by experienced database veterans > More than 100 man years in R&D > More than 50 production installations worldwide > Protected by patent USPTO 7,676,516 > First production sites early 2004 > Cool Vendor award > SC Magazine US and Europe Awards 2011 finalist > Among our customers: