Guardium for Mainframes Key Features 100% Visibility into All Mainframe Database Activity • Addresses mainframe without Impacting Business Processes auditing without using trace facility or native logs: Business Challenges • Captures all critical operations on DB2 Tracking the details of who does what with data is required for organizations to comply with key regulations for z/OS including: such as Sarbanes-Oxley (SOX) and the Payment Card Industry Data Security Standard (PCI-DSS). – Dynamic and static queries In the mainframe environment, the only way to monitor database activities has been to use native logging – SELECTSs, DMLs and DDLs utilities such as trace or transaction logs. This approach is impractical, however, for three important – Access grants and revokes reasons. These utilities: • Leverages zIIP mainframe specialty engine 1. Degrade database performance, to offload processing from the general 2. Don’t capture all critical operations, and central processors 3. Require complex and time-consuming changes to database structures. • Monitors and audits all access to DB2 for In addition, they fail auditors’ requirements for separation of duties because database administrators z/OS for privileged users and network (DBAs) can easily disable them or modify their contents. Finally, they don’t provide real-time protection. clients All analysis is performed “after the fact” on massive amounts of unfiltered log data, which means that violations and breaches are only discovered days or weeks later, if at all. • Unified solution for mainframe and distributed databases environment with Most of these limitations apply even when logging utilities are used in conjunction with Security centralized management Information and Event Management, because these tools merely import activity information from logging utilities rather than collecting and performing contextual analysis.

Support Matrix Solution Description Guardium and NEON Enterprise Software have partnered to deliver Guardium for Mainframes, the first • Database platforms: DB2 for z/OS v8 and v9 security and auditing solution that tracks all mainframe database activity – including access to sensitive • OS platforms: z/OS v1.6, v1.7, v1.8 and v1.9 data and unauthorized changes by privileged users – without impacting business processes. In addition to automating and simplifying regulatory compliance, the solution enables proactive, real-time database security by immediately identifying anomalous behavior as well as activities that violate corporate policies, and instantly generating policy-based actions such as security alerts.

Guardium for Mainframes consists of three core components that are tightly integrated in a distributed architecture:

P Z-TAP™, a lightweight monitoring service for z/OS developed by NEON Enterprise Software, which tracks all database activities on the mainframe itself. For example, the service tracks all DB2 queries executed by a CICS application or all database changes implemented by DBAs. Performance impact is minimal (typically a few percent) because all analysis is performed off-mainframe and the service does not rely on native logs. To further reduce z/OS licensing costs, which are tied to MIPS consumed by central processors, the Z-TAP offloads processing to IBM’s specialty co-processors called zIIPs (z Integrated Information Processors).

P The Z2000, a high-performance, -based appliance developed by Guardium, for efficient, off- mainframe analysis and storage of massive amounts of audit data. The appliance provides sufficient, self-contained capacity for online storage of up to 2-4 billion database transactions, as well as an integrated interface for periodic archiving of audit data in encrypted format. P The Security Suite, an integrated family of intuitive, Web-based security and compliance monitoring About NEON applications that run on the appliance itself, developed by Guardium. The Security Suite includes Enterprise Software applications for defining granular access policies, creating baselines to rapidly identify anomalous behavior as well as common attacks such as SQL injection, correlating unauthorized activities and policy NEON Enterprise Software is the technology violations, automating compliance reporting and oversight workflows, tracking and managing incidents, leader in mainframe data management software and forensic analysis. and services. As the rules of business change, our solutions let you efficiently control, protect and manage your data with confidence. Founded in 1995, NEON Enterprise serves customers worldwide with its dedicated team of industry experts.

About Guardium

Guardium, the database security company, develops the most widely-used solution for database activity monitoring, security and auditing, with a blue-chip customer base that spans organizations in all major geographies and industries. Founded in 2002, Guardium was the first company to address the core data security gap by delivering a practical, appliance- based platform that both protects databases in real-time and automates the entire compliance Guardium for Mainframes consists of three core components: Z-TAP service, Z2000 appliance and auditing process. Guardium Security Suite

One Scalable Solution for Both Distributed and MF Environments

Guardium for Mainframes allows organizations to further simplify and reduce the cost of their security and compliance processes with a single unified solution for both mainframe and non-mainframe environments. This is important because most organizations support multiple DBMS platforms – such as Oracle, Microsoft SQL Server, IBM DB2, Informix and Sybase, running on UNIX, Linux and Windows systems – typically in conjunction with enterprise applications

The unified approach deploys multiple Guardium appliances in a multi-tier topology. Guardium’s G5000 management appliance provides centralized policy management, aggregation and normalization of audit data, and enterprise-wide compliance reporting, across all DBMS servers and platforms – both mainframe and non-mainframe – and across multiple data center locations.

This scalable, multi-tier architecture can easily be scaled up to meet any mix of throughput and auditing policies, simply by adding appliances which work together in a federated model.

230 Third Avenue For more information, contact Waltham, MA 02451 USA NEON Enterprise Software T: +1 781 487 9400 at 888.338.6366 or F: +1 781 487 7900 281.491.6366, www.guardium.com or visit our website at www.neonesoft.com.

Copyright © 2007 Guardium. All rights reserved. Information in this document is subject to change without notice. Guardium, Safeguarding Databases, S-TAP and Z-TAP are trademarks of Guardium. All other trademarks and service marks are the property of their respective owners. All other trademarks are the property of their respective owners. 10/07