Gartner Blog Network

DAM Grows Up, Welcome DAP!

by Ramon Krikken  |  March 2, 2012  |  Comments Off on DAM Grows Up, Welcome DAP!

Jeffrey Wheatman and I just published a new note each on database security. For a long time, the main solutions in this space were referred to as Database Activity Monitoring. Monitoring is still an incredibly important aspect, but the products have really grown up in the last couple years – so we’re renaming the solutions to more accurately reflect their capabilities and customer requirements: enter Database Audit and Protection.

The most interesting thing about DAP is its sheer breadth of capabilities applied specifically to databases: from attack prevention to user auditing to discovery, it is almost anything and everything database security could encompass. This breadth is also visible in the number of adjacent and overlapping markets/solution types: Nine … and it even includes the extremely important non-security adjacency of, and overlap with aspects of Data Management.

Even though I’m often the last to recommend a channel-specific security product, creating a database security architecture that encompasses a multitude of databases in large environments is well beyond what DBMS and other data store products can offer by themselves. And while there are multiple ways to skin this cat (see again the adjacencies), I would strongly encourage customers to do at least a paper-based evaluation of how DAP fits in their overall security, database, and application architecture.

If you have an ITL seat and are looking for a high-level discussion on the renaming, have a look at “Database Activity Monitoring Is Evolving Into Database Audit and Protection” (customer access only).

And if your team has a GTP license, get all the technical and architectural details and advice in “Enhancing Security and Compliance With Database Audit and Protection” (customer access only).

Category: security  

Tags: dam  dap  data-management-security  database-activity-monitoring  database-audit-and-protection  database-security  

Ramon Krikken
BG Analyst
2 years at Gartner
15 years IT industry

Ramon Krikken is a Research VP the Gartner for Technical Professionals Security and Risk Management Strategies team. He covers software/application security; service-oriented architecture (SOA) security; structured and unstructured data security management, including data masking, redaction and tokenization...Read Full Bio

Comments are closed

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.