Accelerates Data-Centric Security Using Attribute-Based Access Control
Chicago and Stockholm, February 3, 2015 – Today Axiomatics announces the immediate availability of Axiomatics Data Access Filter for Multiple Databases version 1.1, with support for the IBM DB2 LUW database. This latest release from the leader in Attribute Based Access Control (ABAC) provides enterprises with powerful, policy-driven data filtering for DB2 – and continues coverage for MS SQL and Oracle.
Enterprises have a growing need to enable agile business processes that involve data sharing, with the challenge of controlling access to data for only those who are authorized to see it. The Axiomatics Data Access Filter protects the database contents with cell-level granularity from a single point of access control, and adapts quickly as business requirements change and policies must be altered.
“We are excited to bring the Axiomatics Data Access Filter MD for IBM DB2 to market to meet the growing needs of enterprise customers,” said Babak Sadighi, CEO at Axiomatics. “The adoption of fine-grained authorization for databases is a positive trend toward collaboration and data sharing while ensuring data governance, compliance and privacy concerns are addressed.”
The Axiomatics Data Access Filter combines two proven, robust technology approaches: data-centric security and standards-based Attribute Based Access Control (ABAC). The solution intercepts the user’s initial SQL database query, and reroutes is to the Axiomatics external authorization service where relevant policies and other external attribute sources are referenced to dynamically alter the SQL statement before accessing the database. Thus, only authorized data is returned to the user.
Policies are created using standards-based XACML (eXtensible Access Control Markup Language) which allows managers to author business policies that are translated into back-end database filter expressions from a central source.
For example, a large pharmaceutical enterprise uses the Axiomatics Data Access Filter to facilitate collaboration on new product development across diverse teams. The company needs to protect sensitive research data, such as confidential drug formulas and clinical trial data, by ensuring details are appropriately shared with authorized members of the respective project team or study only. Furthermore, permissions may change depending on dynamically changing conditions, such as the phase of clinical testing. Any attempt to control data retrieval based on static rules or role assignments would therefore be insufficient.
The Axiomatics Data Access Filter MD is deployed on the data layer and becomes an integral part of information retrieval regardless from where the request is made. Consequently, policies applied to the database become consistently enforced across the enterprise.
About Axiomatics: Axiomatics is the world’s leading independent provider of dynamic authorization solutions. We enable organizations with highly sensitive, business-critical information to safeguard and centrally manage user access through externalized, context-and policy-based authorization solutions for applications and databases that work within and across enterprises. For more information visit www.axiomatics.com.