The Masquerade Party is Over

Ladies and Gentlemen, take off your masks.  The corporate database anonymity party is over.  Brother-WatchDog is taking a bite out of data crimes and corruption worldwide by accurately revealing database user activities to authorized personnel.  What's more, with Brother-WatchDog's robust auditing capabilities, your organization can better achieve PCI compliance, HIPAA compliance, and improve internal SOX controls.

No More Hiding

You have Thousands of privileged End Users, Hundreds of privileged Decision Makers, Dozens of highly privileged database administrators, several Web Application Servers, a corporate database with sensitive or financial data, and somebody inappropriately tampered with, or accessed, the data, but nobody knows which priviledged user is responsible.   

Who did it?  Brother-WatchDog Knows^SM ... Who, What, Where, and When!

The Anonymity Problem: Connection Pooling

Today’s web applications enable hundreds or thousands of end users to efficiently connect to application servers.  To ease database security administration and improve application performance, these application servers establish a number of persistent pooled connections to the corporate database under the authority of a single powerful user, such as WEBADM.  In the eyes of the Oracle database, all data access and updates are conducted by this single, powerful, userid and the real End User identity is obfuscated by the connection pool.   Network sniffing to trace user activity falls prey to the same insidious problem because WEBADM is the identity that flows across the corporate network.

---

---

DBI’s Unique Solution:

Brother-WatchDog for Oracle provides breakthrough technology for tracking access and updates to corporate database data.  Web application End User identities and locations are captured, exposed, and correlated to their database statement activity thus making it possible to determine:

• Who initiated data access or updates (Web, Client, Local, DBA, or Power Users)
• What data was accessed or updated (SQL statement texts)
• Where the activity originated from (IP Address)
• When the database activity occurred (date and time)
• Whether the access or update succeeded or failed

Brother-WatchDog does not rely on network sniffing.   Instead, its US Patent Pending technique utilizes:

1. An unobtrusive Web Server “zap” that captures end user identity and location “fingerprint” information (no application changes are required), and passes this fingerprint information to Oracle.
2. Database statement activity with correlated fingerprint identity information is hardened to prevent alteration of records via “tamper evident seals”, and then this information is loaded into Brother-WatchDog’s application repository for scheduled reporting, notifications, and adhoc inquiries.

Key Features

• Ability to audit specific tables with optional selective criteria
• Tracks Logins and Logouts (Connections)
• Easily audit specific users, power users, and DBAs
• Audit DDL Activity (Create, Alter, Drop...)
• Audit Security Changes (Grants, Revokes)
• Unmasks otherwise anonymous identities of privileged data users
• Reveals detailed database activity records for Web End Users, database Clients, and Local administrative users
• Ability to create and schedule periodic reports and notifications
• Ability to conduct simple Google®-like ad hoc discovery searches
• Tamper Evident Seals harden audit activity data to ensure its accuracy
• Receive Email notifications based on defined audit rules
• Automatically minimizes audit overhead by utilizing the least obtrusive audit capture methods according to your audit requirements
• Supports existing Oracle audit policies, and adds value via Tamper Evident Seals and reporting features

WHO – WHERE – WHAT – WHEN – ACCOUNTABILITY ACHIEVED!