Press release: Database Security Leaders NGSSoftware and Secerno Partner to Extend Database Vulnerability Assessment From Network Through to Application Levels
Oxford, United Kingdom, April 30, 2009 – Secerno, the technology leader in active database control, today announced a partnership with database platform vulnerability assessment leaders, NGSSoftware (NGS) www.ngssoftware.com, to offer customers a complete assessment of all database vulnerabilities at both the network and application level.
The NGSQuirreL products combine with Secerno’s own database activity monitoring and policy enforcement products to form the most comprehensive portfolio available – to address internal and external threats to organisations’ databases.
By combining the assessment of the vulnerabilities in the database platform, NGS allows database owners to harden the base level security by tightening up configuration, software patches, and account management. Real-time control over what interactions are permitted with the database is provided by Secerno’s control and monitoring products. This combination of platform hardening against known vulnerabilities, and accurate control over application and user interactions with the database in real-time ensures that best of breed technology provides the utmost security for databases.
NGS, recently acquired by leading IT security firm, NCC Group plc, is the author of the best selling Database Hackers Handbook and provides the most up-to-date research driven database vulnerability scanning tools on the market. The company has released its enterprise wide NGSQuirreL family of products, which are backed by the latest vulnerability research and best industry practices. With the NGS offering, customers of both companies will have a secure platform for data-dependent applications.
Customers will also benefit from Secerno DataWall™, which delivers advanced, comprehensive and intelligent database security. Secerno DataWall capabilities let organisations monitor database activity or deploy Secerno DataWall as a full database policy enforcement system, blocking threats from reaching databases. Companies can implement Secerno DataWall as a hardware appliance or as a virtual appliance, on the VMware platform.
Steve Moyle, Founder and CTO of Secerno said, “We are delighted to offer customers joint solutions based on two multi-award winning products. NGS and Secerno have been quietly working together on database security for many years. This partnership takes the relationship further and delivers real value to our customers”.
Dave Litchfield, Co-founder and Business Development Director of NGS said: “Secerno’s unique real-time approach combined with our cutting-edge vulnerability research, makes this a truly exciting partnership. Databases are a uniquely valuable resource within organisations and now their vulnerability is getting the focus it needs.”
About Secerno
Secerno, headquartered in Oxford, UK, is an established provider of active database control. It delivers the world’s most advanced and comprehensive intelligent activity monitoring and database policy enforcement solution: Secerno DataWall™ – now uniquely available in both a hardware and virtual appliance.
Secerno DataWall is designed to stop threats before data is lost or compromised (instead of simply monitoring and reporting after the damage is done). It accurately and actively blocks all threats to your data, even from trusted and privileged users. It offers the highest levels of protection against these threats and optimises compliance auditing, as well as delivering the ability to improve the security of applications.
At the core of Secerno DataWall is the patented SynoptiQ™ Engine, based on break-through research into efficient grammatical clustering. The SynoptiQ Engine uses Semantic Clustering™ to cluster queries automatically and intelligently into an Intent-Based Model™ of database environments; so they are distilled into meaningful information for efficient human review and automatic generation of a zero-defect policy that identifies with fine precision and total accuracy every kind of query that is allowed to reach a specified database – and specifies the actions to be taken on out-of-policy activity.
Uniquely, Secerno enforces a 100% positive security policy of only approved behaviour, providing the option to either log, alert, block or substitute database requests. Policy Channels™ enable strategists and administrators to add new and complex layers of rules that map policy to a company’s specific business needs.
Secerno offers protection to customers across industries including financial services, healthcare and pharmaceuticals, retail, and government agencies and departments. The company is funded by UK investors Amadeus Capital, Eden Ventures and SPARK Ventures. For more information, go to http://www.secerno.com
About NGS
NGS, which was acquired by NCC Group in 2008, is a global leader in vulnerability research and detection, state-of-the-art security consultancy, database security and in providing software solutions for securing applications and data within the security marketplace.
NGS’s expertise has been recognized across both the security industry and in business with awards including the Queen’s Award for Enterprise in International Trade 2007, ‘Best Security Company 2008’ in European SC Awards, the International Trade Award for Innovation 2008, the European Red Herring 100 Award 2008 and the International Trade Award South East England 2008.
NGS works with major software vendors to develop fixes for previously undisclosed vulnerabilities (commonly referred to as ‘zero-day exploits’) discovered during research activities and engagements. The benefits to the client of NGS’s knowledge are that NGS are able to utilise these findings to protect against threats that have yet to be remedied by software vendors. Our expert knowledge is used to secure the infrastructure, software products and applications of dozens of the world’s largest corporations, banks and governments who have an Internet presence.
NGS are one of only three companies selected to provide the CESG Tailored Assurance Service (CTAS), this service is intended to evaluate a wide range of IT products and systems ranging from simple software components to national infrastructure networks on behalf of CESG. A toolbox of activities is provided that enables each evaluation to be tailored as appropriate.” CESG is the Information Assurance (IA) arm of GCHQ and is based in Cheltenham.
Armed with it’s diverse portfolio of in-house cutting edge security tools and consulting services NGS have the expertise to offer globally respected security application testing, network penetration testing, code reviews & training services.
For more information:
Kate Mills/Mital Joshi
Rocket PR
Tel: 08453 707 024
Email: secerno@rocketcomms.net
Katharine Greenwood
Marketing Manager
Secerno
Tel: 0845 450 9460
Email: kate.greenwood@secerno.com
