This report represents the current findings of the Project Quant open patch management project. The report will be updated as the research continues and we refine the model. Please see the project site for more information.
Understanding and Selecting a Database Activity Monitoring Solution white paper. This paper examines the business requirements for monitoring databases, as well as the technologies that assist in capturing and analyzing that activity. Rich discusses the compliance and security issues that organizations face, and the options they have at their disposal to identify and report on transactions that fail to meet business best practices. As there are many ways to collect information in and around relational databases, and still more methods to analyze and report on the findings, Rich digs into the nuts and bolts to offer the reader a comparative analysis of the technology options available, and how they address end user requirements. This research is recommended to be used in conjunction with other application security tools, as many web and traditional applications rely upon database technology to store, manage, and report on data – linking the compliance and security requirements together.
Data Loss Prevention
This paper covers our recommendations for using endpoint DLP- including major features, what to look for, and deployment recommendations. Since we generally recommend full-suite DLP solutions over endpoint only solutions, you will notice the paper focuses more on endpoint DLP as part of a larger DLP program.
Thanks to Symantec for sponsoring (as always, the content was developed completely independently of any sponsorship).