Sentrigo Extends Platform Support, Compliance Features for Database Security

Hedgehog 3.0 now supports SQL Server 2008 on Windows Server 2008

Note: ESJ’s editors carefully choose vendor-issued press releases about new or upgraded products and services. We have edited and/or condensed this release to highlight key features but make no claims as to the accuracy of the vendor's statements.

Sentrigo, Inc., a database security software vendor, has updated its flagship database activity monitoring and intrusion prevention suite. Hedgehog 3.0 now supports Microsoft SQL Server 2008 running on Windows Server 2008 in addition to its current support for SQL Server 2005 and SQL Server 2000 running on earlier Windows platforms. Additionally, Hedgehog vPatch, Sentrigo’s virtual patching solution, now includes dozens of additional protections specific to SQL Server.

Additional Hedgehog 3.0 enhancements were designed to meet the accelerating demand for database monitoring to satisfy regulatory requirements.

Sentrigo developed its first products for the Oracle platform, and support was added last year for versions of SQL Server and Sybase. Hedgehog now fully supports the most recent service packs from Microsoft, including SQL Server 2008 SP1 and Windows Server 2008 SP1.

Slavik Markovich, Sentrigo’s chief technology officer, commented: “Hackers use slightly different methods to attack systems built on SQL Server compared to systems using other databases. For example, applications that use a SQL Server back end are commonly targeted by bots and worms, which can deliver a payload that does anything from taking control of the database machine to infecting other systems making use of the database and application. The latest version of Hedgehog is the best way to protect against these vulnerabilities before data has been compromised.”

New or enhanced compliance features now available, include:

  • Masking of sensitive information based on regular expressions – to further limit exposure of credit card numbers, Social Security numbers, and other PII, even for administrative users viewing alerts in the management interface and logs, data matching customizable filters is masked. By not displaying this information, compliance with HIPAA, PCI DSS, and other regulations is improved.

  • Alerts on excessive behavior – to better meet Sarbanes-Oxley requirements, Hedgehog can now monitor repeated valid activities that are likely to be indicative of a threat. For example, while a call center representative may have a need to confirm a credit card number is valid, dozens or hundreds of such requests within a short timeframe can now be set to trigger an alert.

  • High performance auditing – customers in high-volume transactional environments with a need to audit and archive all database events and not simply alert on them, are now able to log activity to a flat file. This allows extremely fast real-time performance while still providing complete offline review of logs to support forensic analysis.

“Database activity monitoring is quickly becoming a requirement for organizations to demonstrate compliance with a range of industry regulations,” stated Andy Feit, vice president of marketing for Sentrigo. “By working closely with leading companies in their respective fields, we are delivering an unmatched feature set that can help any organization most effectively protect their data, and prove to their auditors that they are doing so”.

Sentrigo’s Hedgehog family of database security products includes these offerings:

  • Hedgehog Enterprise, a database activity monitoring solution, provides full visibility into all activity, including local privileged access, protecting the database in real time with actionable alerts and intrusion prevention capabilities.

    Hedgehog is built on a memory-based architecture that cannot be bypassed by those who have direct access to the database. In addition, Hedgehog is well suited for virtualized environments -- unlike network-based appliances, Hedgehog sensors can transparently monitor transactions between virtual machines running within a physical server.

  • Hedgehog vPatch is a subscription service that protects customers’ databases against known and zero-day exploits during the critical time from when a vulnerability is discovered until a vendor patch can be applied. Unlike vendor patching, Hedgehog vPatch requires no downtime or application testing.

  • Hedgehog IDentifier is an add-on to Hedgehog Enterprise for detecting the person responsible for database activity in a pooled connection environment. IDentifier allows companies to conduct full audits for compliance purposes and to enforce granular control over database access policies.

  • Hedgehog Standard is a free version of the Hedgehog software for smaller database environments, and is limited to alerting only.

For more information, or to download this and other Sentrigo database activity monitoring products, visit

Must Read Articles