Product Overview

Cloud Database Audit System (Udas), pioneering a two-way audit mechanism, covers applications, middleware, databases comprehensively, achieving a three-dimensional defense effect of “pre-event prevention + in-event prevention + post-event evidence collection”. The audit system adopts Database Deep Packet Inspection (DPI) and Stream body Analysis Technology (DFI), etc., which can translate various database access operations into database-level operation statements. With the help of predefined security rules, the audit system can intelligently analyze and monitor various actions of the visitor, give real-time threat warnings, and keep statistical analysis records of events, multi-identity positioning, effectively supporting digital forensics.

The audit system audits and examines audit and transaction logs to track various behaviors of database operations. General auditing primarily records operations on databases, changes to databases, personnel executing the operations, and other attributes. These database records are logged into the independent platform of the audit system, maintaining high accuracy and completeness. When conducting forensic examinations on database activities or statuses, auditing can accurately reflect various changes in databases, providing evidence for our analysis of regular, abnormal, and non-compliant operations of databases.

The system adopts a three-power division model, including three platforms: the system management platform, security management platform, and audit management platform. Each platform has different functions and responsibilities, different authorities, and mutually supervises each other. For example, the system administrator is responsible for the operation settings of the device; the security administrator is responsible for viewing relevant audit records and rule violations; the audit log personnel is responsible for viewing the operation log of the entire device.

Product Value

• Accurate Visualization, Secure Control

  The highly intuitive interface displays current audit results according to a total division structure, helping users promptly comprehend the risk situation of their system, quickly affirm and scrutinize according to the current risk situation. When abnormalities occur, such as sudden traffic changes and sudden session increases, users can quickly track the risk source through the audit page to prevent dangerous attacks.

• Traceability Analysis, Precise Accountability

  Through business association functions and auditing functions, perform statistical analysis from various dimensions, compile the original user operation audit records, provide rapid retrieval ability for the original data, enabling users to rapidly confirm the source of the problems, accurately locate and hold people accountable for security events, conduct traceability forensics.

• Protection of Asset Data Security

  By recording, analyzing, and reporting user behavior when accessing the database, users are assisted to generate compliance reports and accident root-cause traceability after the event, also strengthening records of internal and external database network behavior, enhancing data asset security.

• Access Control

  Specific operations of a user, especially operation staff, who has conducted misoperations or illegal activities with privileged accounts can be blocked and warned in time to reduce effects and losses. The database can be accessed only within a specific range of access IPs as well, blocking illegal entities from accessing it. Enhance data asset safety.

• Meeting Regulatory Requirements

  Helping users meet regulatory requirements like equal protection and division protection. Government and industries are attaching more importance to information security and have proposed many related standards to ensure network security of various units. Government administrative institutions or state-owned enterprises must follow the regulatory requirements of equal protection and division protection. UCloud Global provides an independent audit solution, which helps to improve the organization’s internal control and audit system, meet various regulatory requirements, and enable the organization to pass the audit smoothly.