DataSunrise Database Firewall for GaussDB

GaussDB Firewall by DataSunrise gives you robust database protection from external and internal threats. The Firewall is placed between the database and the user. It inspects every incoming SQL query and blocks queries that were indicated as prohibited in real-time. All access privileges are controlled according to security policies.

As far as a Firewall is deployed as a proxy, it does not allow the client to directly connect to the database. Working as an intermediary, the Firewall provides a high level of data protection and security through deep traffic analysis and filtering. When there is a match with the forbidden security rule, the Firewall disconnects the client or just closes the session. Incoming and outgoing database traffic can be analyzed for compliance purposes according to the security rules set.

Previously created security rules filtrate database traffic according to the host, application, or database user that initiated the query, according to the target database, schema, or table. Also, DataSunrise Firewall can block fundamental SQL injection techniques including union-based exploitation, boolean-based exploitation, out-of-bad exploitation, and others.

The Firewall for GaussDB has a learning mode. In this mode, DataSunrise analyzes incoming SQL traffic and forms a list of allowed queries that is formed from the commonly met queries in the given environment. These queries will be considered safe, and others will be blocked.

The Firewall by DataSunrise guarantees the protection of your GaussDB and data inside it against malicious attacks and insider risks. Sitting between the client and the database, it monitors, filters, and records query thereby preventing the execution of unsafe queries indicated by security policies.