Oracle Targets Businesses With Database Firewall

Enterprise software and server maker Oracle has unleashed a new firewall that is designed to protect a company's database from external and internal attacks.

The firm announced its new Oracle Database Firewall at the RSA conference in San Francisco this week.

The product establishes a defensive perimeter around databases, monitoring and enforcing normal application behavior in real-time, helping to prevent SQL injection attacks and unauthorized attempts to access sensitive information.

Vipin Samar, Oracle's vice president of database security, said in a statement “Oracle Database Firewall offers organisations a first line of defence that can stop internal and external attacks from reaching databases. Evolving threats to databases requires enterprises to look at new security solutions.”

The firewall uses whitelisting and blacklisting techniques to block, alert, pass, log and substitute SQL queries. Oracle said that customers will not have to make changes to existing applications, database structure and operating systems.

The firewall is capable of armouring its 11g database and earlier versions, IBM DB2 for Linux version 9 and higher, Microsoft SQL Server versions 2000, 2005 and 2008 and Sybase SQL Anywhere V10, along with other prevailing enterprise databases.