DataSunrise Database Firewall for AlloyDB

DataSunrise Firewall for AlloyDB provides security against internal and external threats by inspecting incoming SQL queries and blocking those of them that are defined as prohibited. Security policies let control access privileges.

The firewall for AlloyDB monitors database service, processes incoming queries and database service responses, analyzes service traffic, and captures user behavior that contradicts previously set security policies. As far as the firewall deployed as a proxy, it resides between the database service and the client. Thanks to it the firewall audits and intercepts all incoming and outgoing traffic. The firewall provides an increased level of protection, deep packet filtering, and detailed logging.

The firewall guarantees the prevention of different types of intrusion. DataSunrise blocks fundamental SQL injection techniques such as:

• union-based exploitation
• boolean-based exploitation
• out-of-band exploitation, and others.

Our firewall also has a learning mode that analyzes incoming SQL traffic and forms a list of commonly met queries across a given environment. These queries are assumed to be safe, and other queries will be blocked. Learning mechanisms are flexible and can be adjusted to your needs.

You can easily configure notifications via SMTP and SNMP when a certain query does not match the security rule or triggers a corresponding rule. Be sure that your AlloyDB is protected from internal and external threats with DataSunrise Database Firewall.