Database Obfuscation

Data Masking - I did a quick review on some Database Obfuscation tools and and below is my quick review...

Best –Hexatier

Active Masking - acts like Database proxy so all users and admins connect to DB via Hexatier. Very small performance change this would be probably biggest exception. It can mask data on the fly – and be a DB Firewall, access control and protection. Also as it’s a proxy can sit in front of Cloud DB’s and DBAAS.

Problems – It doesn’t support Oracle – only SQL, My SQL Postgres

Good - Camouflage (Best for Range of Supported DB's)

Static Masking - just take a copy of the db you need then run Camouflage against it. Need to schedule that to run to keep a obfuscated version for dev. They see this a benefit as it’s more secure, your data Is never queryable cause it’s already cleansed or they say Unlocked Data when cleansed. It’s biggest benefit is they can do it for every db I could think of, Oracle - SQL - Sybase - IBM DB2 Netezza MYSQL Maria PostGres and lots of transformation types.

Problems – Masking only no DB functionality not Not as cool as the Hexatier. Can combine with other Imperva SecureSphere products to do combination solution. Static data relies on Scheduling to run. I will take a look at SecureSphere soon!

#DAM #DatabaseSecurity #DataObfuscation #DatabaseProxy