Sentrigo: Difference between revisions

This article is an orphan, as no other articles link to it. Please introduce links to this page from related articles; try the Find link tool for suggestions. (July 2010)

Sentrigo

Company type	Private
Industry	Software & Programming
Founded	2006
Headquarters	Santa Clara, California, USA
Key people	Nathan Shuchami, co-founder & CEO; Slavik Markovich, co-founder & CTO
Products	Hedgehog; vPatch; IDentifier; FuzzOr
Revenue	Not reported
Number of employees	40
Website	http://www.sentrigo.com/

Sentrigo is a software company located in Santa Clara, California, USA.

The company was founded in 2006 by Nathan Shuchami and Slavik Markovich, to address several key challenges in Database security. Specifically, the inability to monitor activity of privileged users^[1] and those who have established such credentials through nefarious means, and the difficulty in maintaining a DBMS at the most current patch level.

Sentrigo is privately held and backed by Benchmark Capital and Stata Ventures.^[2]

Hedgehog is a family of products dedicated to database activity monitoring and attack prevention. Hedgehog allows customers to protect databases such as Oracle, Microsoft SQL Server, and Sybase, without interfering with their day to day operations. The product is based on a sensor and server model. The sensor resides on the database's OS and monitors the memory/cache for suspect database transactions, sending them in real-time for processing by the server. Thus, unlike network-based or host-based intrusion detection systems (IDS) or intrusion prevention systems (IPS), Hedgehog can fully monitor databases running on Virtual Machines or even in the cloud. The server is a Java based application that communicates with the sensors and can centrally monitor hundreds of databases. Based on a set of policies and rules, the system can audit, alert on, or suspend sessions that violate preset conditions.

vPatch, is a solution for "virtual patching" of databases to overcome the problem that many customers are unable to apply security patches to their databases in a timely manner.^[3] This may be due to the inability to schedule downtime for a production system, the time lag for testing / 3rd party support for applications on top of the database, or numerous other reasons. Sentrigo vPatch includes a set of rules which generate alerts when known vulnerabilities are exploited, and can be used to terminate attackers' database sessions. vPatch rules are updated on a frequent basis as new security updates are issued by the DBMS vendor, or as new vulnerabilities are discovered by Sentrigo's research team or partners.

A common practice in developing applications (and web applications in particular) is the use of fat database accounts (common schema) and pooled connections to enhance application performance. Using this approach raises a problem with full end-to-end user tracking in the database layer. The database is unable to see end-user details like username and IP address, only seeing the application server IP and the common schema account. Hedgehog IDentifier solves this problem by providing an application server plug-in that captures end-user information and transparently propagates it to the database tier by using standard database APIs. No application changes are required. IDentifier supports custom Java and .NET applications as well as all the major business applications. Some technical details are available in this blog entry^[4].

FuzzOr (fuzzer for Oracle) is an open source software tool developed by Sentrigo. FuzzOr provides database administrators and programmers with the ability to test PL/SQL code for security vulnerabilities. The tool discovers vulnerabilities by attempting to exploit the code and is particularly helpful in finding SQL Injection and Buffer Overflow vulnerabilities. Sentrigo provides the tool free of charge.

• Official Site
• Musings on Database Security by Slavik Markovich
• Fuzzing tool helps Oracle DBAs defend against SQL injection