Data Integration for Security Management
Imperva was joined by a few other security vendors (Ounce Labs, SenSage, Crossbeam Systems) yesterday to announce a data integration framework ("Imperva OpenSphere") around its SecureSphere database monitoring and application firewall products. The coverage in eWeek and TMCNet will surely please the marketing staff at the companies involved but I think the coverage misses the bigger picture.
Silos of information make it difficult to manage a business and that's way data warehouses and data marts are so widely adopted. Organizations will suffer through expensive data warehouse projects to get the data integration and reporting capabilities they need to understand the state of their business. With the kind of integration envisioned by the Imperva initiative, we can see similar benefits in security managements.
The key that will make or break this project is if we can fine grained integration across application and monitoring tools. We need to know what is going on at the network, database and application level at the same point in time. We also need to know the vulnerabilities across the implementation stack at any point in time. If we can get these kinds of details, then the initiative will be a success. I hesitate to speculate on when we'll get there but I think we are closer to the beginning rather than the end of this process.
Email This!
Digg it!
Sphere it!
Del.icio.us
Reddit!
Newsvine
