新手入门
最佳实践
API中心
自助服务
<p class="shortdesc"></p>
<section class="section" id="function__section_srf_hj1_nsb"><h2 class="doc-tairway">原始信息收集</h2>
<p class="p">数据库审计通过在应用服务器上安装agent的方式抓取数据库通讯流量,从而在不改变用户现有网络结构,不占用数据库服务器资源,不影响数据库性能的情况下,对并发流量进行采集与处理、多点存储及多级管理,实现了配置与报表的集中管理。</p>
</section>
<section class="section" id="function__section_acr_4j1_nsb"><h2 class="doc-tairway">审计信息标准化</h2>
<ul class="ul" id="function__ul_jxv_qj1_nsb">
<li class="li">支持审计国内外主流数据库,包括传统的数据库系统、大数据系统和Web系统等,具体支持的系统和版本如下表所示。<table class="table" id="function__table_h5m_1k1_nsb"><caption></caption><colgroup><col><col><col></colgroup><thead class="thead">
<tr class="row">
<th class="entry" id="function__table_h5m_1k1_nsb__entry__1">
<p class="p">数据库分类</p>
</th>
<th class="entry" id="function__table_h5m_1k1_nsb__entry__2">
<p class="p">数据库系统</p>
</th>
<th class="entry" id="function__table_h5m_1k1_nsb__entry__3">
<p class="p">版本</p>
</th>
</tr>
</thead><tbody class="tbody">
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__1 " rowspan="19">
<p class="p">通用数据库</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Oracle</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">8i、9i、10g、11g、12c、18c、19c</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">MySQL</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">4.0、4.1、5.0、5.5、5.6、5.7、8.0</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">SQL Server</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">2000、2005、2008、2012、2014、2016、2017、2019</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Sybase</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">11.9、12.5</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">DB2</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">V80 、v81、v82、v95</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Informix</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">IDS9</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">OSCAR</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">5.5、5.7 </p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">达梦(DM)</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">DM7</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Cache</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">PostgreSQL</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">9、10、11</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Teradata</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">人大金仓kingbase</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">V6</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">GBase</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">8.8s、8.5a</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">MariaDB</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">5.1、5.2、5.3、5.5、10.0、10.1、10.2、10.3 </p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Hana</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">1.0、2.0</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">MongoDB</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">2x、3x</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Redis</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">GuassDB</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">100、200、300</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Greenplum</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">6、5</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__1 " rowspan="9">
<p class="p">大数据</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Hbase(Protobuf)</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Hbase(thrift)</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Hive</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Elasticsearch</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Cassandra</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">3.x</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">HDFS</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Impala</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">3.x</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">LibrA</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">6</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Graphbase</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">6</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__1 ">
<p class="p">网站</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Web</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__1 " rowspan="2">
<p class="p">其他</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">Telnet</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
<tr class="row">
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__2 ">
<p class="p">FTP</p>
</td>
<td class="entry" headers="function__table_h5m_1k1_nsb__entry__3 ">
<p class="p">所有版本</p>
</td>
</tr>
</tbody></table></li>
<li class="li">不同数据库协议按照标准化的格式进行展示,方便管理人员阅读和分析。</li>
</ul>
</section>
<section class="section" id="function__section_j3s_nk1_nsb"><h2 class="doc-tairway">审计信息筛选</h2>
<div class="p">
<ul class="ul" id="function__ul_wfb_5k1_nsb">
<li class="li"> 根据5W1H(What、Where、When、Who、Why、How)分析模型进行规则设计,并支持自定义配置规则条件。</li>
<li class="li">内置近400条安全相关的审计分析规则, 根据采集到的数据进行数据分析并产生行为模型。</li>
<li class="li">审计结果查询。</li>
</ul>
</div>
</section>
<section class="section" id="function__section_bnp_yk1_nsb"><h2 class="doc-tairway">预警与报表</h2>
<div class="p">
<ul class="ul" id="function__ul_cy1_zk1_nsb">
<li class="li">提供Syslog、短信、邮件、SNMP、钉钉等告警通知方式,可第一时间通知管理人员。</li>
<li class="li">内置20种高价值、符合法律法规的分析报表,可从数据库账号增删、密码修改、权限变更、高危操作、违规告警、账号复用、数据库性能分析等维度进行分析。</li>
</ul>
</div>
</section>
页面更新不及时
