Auditing provides you with visibility on who did what in the SAP HANA database .Auditing is the process of monitoring and recording specific user activities in the SAP HANA system. The audit policy is defined in a nameserver.ini file for system database and in a global.ini file for tenant database.
SAP HANA data audit solution by DataSunrise provides a comprehensive visibility of database activity and keeps track of all user operations and changes made to the database. Integration with SIEM system gives the opportunity to analyze security alerts in the real-time. The software is easy to deploy and it doesn’t cripple the database engine. Here are some cases when data audit comes handy.
Privileged User Monitoring
Major concern of company’s information security system lies with the need to prevent malicious actions of employees. Monitoring allows revealing anomalous activities, like viewing sensitive data, creating new accounts with root-privileges, unauthorized adding or deleting tables and other abuses of legitimate access. In addition, it helps to detect unintentional human errors that can have sufficient negative consequences as well. More details on monitoring feature are available here.
Sessions sequence includes detailed tracking of operations performed by a certain user from authorization to logging off. There is no way to hide any action from DataSunrise Data Audit.
After deployment DataSunrise monitors the database activity and generates a baseline of normal behavior for a given corporate environment. List of typical SQL structures simplifies detecting malicious activity like SQL injection and prevent hacker attacks before they do significant harm. Unsuccessful authorization attempts are also recorded. There is an opportunity to switch on a feature that notifies when a certain security rule is triggered via SMTP or SMPP.
Eliminating consequences of a data breach is a costive and time-consuming procedure. Audit trails provide sufficient information for finding the source of a leak and evaluating its cost. DataSunrise collects the following information:
. Codes of SQL queries, results of their execution, number of affected rows;
. Configuration changes, unsuccessful access attempts, user authentication data;
. Error codes;
. Session data (IP addresses, host names, applications used to query the database).
Compliance to standards
Audit and database monitoring feature helps organizations address compliance standards established by the government and regulatory agencies, like Sarbanes-Oxley Act (SOX), Payment Card Industry Data Security Standard (PCI-DSS), Health Insurance Portability and Accountability Act (HIPAA).