DataSunrise Database Activity Monitoring for AlloyDB

DataSunrise provides a monitoring solution for AlloyDB that audits all database service activities in real-time. Activity monitoring identifies fraudulent and illegal activity, unusual user behavior thanks to learning algorithms.

Learning algorithms analyze network traffic and prepare a list of typical and allowed queries. Any unusual queries from users will be blocked including queries from an administrator and other privileged users. Thanks to these algorithms you can save time for checking and simplify further security optimization.

DataSunrise monitors non-typical transactions, attack attempts, privilege escalation, and other illegal activity in your AlloyDB. Moreover, Activity Monitoring can send notifications about the suspicious activity via SMTP and SNMP.

DataSunrise records monitoring results with the following information:

• Codes of queries
• IP addresses
• Host names
• Setting changes made by an administrator
• SQL codes of executed queries, and others.

These results are stored in a separate database, so intruders can not hide traces of malicious activity. You can easily integrate with the SIEM system and export logs there to get a comprehensive real-time security threat inspection.

DataSunrise Activity Monitoring provides a full picture of user activity in your AlloyDB service. Thanks to it you will always know about user actions and stay in compliance with different national and international data security regulations.