Protecting the Data Warehouse with Artificial Intelligence
Teleran is a middleware company who’s software monitors and governs OLAP activity between the Data Warehouse and Business Intelligence tools, like Business Objects and Cognos. Teleran’s suite of tools encompass a comprehensive analytical and monitoring solution called iSight. In addition, Teleran has a product that leverages artificial intelligence and machine learning to impose real-time query and data access controls. Architecture also allows for Teleran’s agent not to be on the same host as the database, for additional security and prevention of utilizing resources from the database host.
Key Features of iGuard:
- Policy engine prevents “bad” queries before reaching database
- Patented rule engine resides in-memory to evaluate queries at database protocol layer on TCP/IP network
- Patented rule engine prevents inappropriate or long-running queries from reaching the data
70 Customizable Policy Templates
SQL Query Policies
- Create policies using policy templates based on SQL Syntax:
- Require JOIN to Security Table
- Column Combination Restriction – Ex. Prevents combining customer name and social security #
- Table JOIN restriction – Ex. Prevents joining two different tables in same query
- Equi-literal Compare requirement – Tightly Constrains Query Ex. Prevents hunting for sensitive data by requiring ‘=‘ condition
- DDL/DCL restrictions (Create, Alter, Drop, Grant)
- DQL/DML restrictions (Select, Insert, Update, Delete)
Data Access Policies
Blocks access to sensitive database objects
- By user or user groups and time of day (shift) (e.g. ETL)
- Schemas
- Tables/Views
- Columns
- Rows
- Stored Procs/Functions
- Packages (Oracle)
Connection Policies
Blocks connections to the database
- White list or black list by
- DB User Logins
- OS User Logins
- Applications (BI, Query Apps)
- IP addresses
Rule Templates Contain Customizable Messages
Each of the “Policy Templates” has the ability to send the user querying the database a customized message based on the defined policy. The message back to the user from Teleran should be seamless to the application user’s experience.
Machine Learning: Curbing Inappropriate, or Long Running Queries
iGuard has the ability to analyze all of the historical SQL passed through to the Data Warehouse, and suggest new, customized policies to cancel queries with certain SQL characteristics. The Teleran administrator sets parameters such as rows or bytes returned, and then runs the induction process. New rules will be suggested which exceed these defined parameters. The induction engine is “smart” enough to look at the repository of queries holistically and not make determinations based on a single query.
Finally, here is a high level overview of the implementation architecture of iGuard. For sales or pre-sales technical questions, please contact www.teleran.com
Currently Featured Clients