Oracle Internals
JulianDyke.com

Welcome

Seminars

Consultancy

Calendar

Presentations

Diagnostics

Internals

References

Acknowledgements

Sentrigo

Sentrigo is a software company specializing in database security monitoring and intrusion prevention. Their products will be of interest to all Oracle users.

My involvement with Sentrigo originated in the supply some of the technical information used to develop the initial prototypes and also the production version. I believe that the Sentrigo approach offers some unique advantages in terms of performance and security.

Sentrigo Hedgehog is a software product that monitors all statements and transactions executed against the database and reports any that violate user-configured security policies. So, for example, you can specify a list of statements that can be executed against the database. Sentrigo Hedgehog will report any statements that do not belong to this set and can optionally be configured to terminate sessions executing these statements.

Hedgehog provides protection against security violations such as SQL injection. It operates entirely outside the database and therefore it can be configured directly by a security team without necessarily involving database administrators. This is often a requirement of more restrictive security policies.

Hedgehog has a minimal impact on performance on the monitored targets. It does not use any Oracle sessions or processes and will therefore not affect your Oracle licences.

Hedgehog is available in two versions; Standard and Enterprise.

  • Hedgehog Enterprise is a fully scalable solution for enterprise database security that integrates with existing security and IT management tools (SIM/SEM tools, HP Openview, IBM Tivoli etc). It is architected to monitor hundreds of databases and provides sophisticated reporting and policy management capabilities. Hedgehog Enterprise can be downloaded for free evaluation from the Sentrigo website.
  • Hedgehog Standard is a completely free product that provides the same level of rule-based security and monitoring caabilities as Hedgehog Enterprise, but is intended to protect a small number of databases. It does not include some Hedgehog Enterprise functionality such as the abillity to terminate user sessions.

Both products can be downloaded from the Sentrigo website (http://www.sentrigo.com)