Print This Article Post Comment Add To Favorites Email to Friends Ezine Ready

Database Patch Management: Ensuring System Security

By: Greg Sachs Home | Computers-and-Technology


Database Patch Management often presents conflicting demands on IT organizations charged with ensuring system security while optimizing system reliability and integrity. Because the time between discovering system vulnerability and the emergence of an attack is less, IT organizations are under pressure to apply patches before adequate testing, and without system downtime. A sound patch management strategy is a key part of any secure enterprise.

Developing any database patch management plan begins with a firm understanding of the current enterprise. Data must be gathered on the configuration of every server, workstation, and network component in the system. Such data is necessary when evaluating the risk and therefore the necessity of particular patches. This base lining may be performed as part of a larger configuration management and risk assessment effort. Although data may be gathered manually, automated tools are employed, which perform the same functions while also keeping the data current. Vulnerability scans can be used to discover services that should be removed or disabled.

Once data is gathered, machines should be brought to the same benchmark security risk level. For servers, an assessment must also be made of their criticality to the enterprise. Change control documents and procedures should be developed, particularly if server hardware and operating system maintenance is performed by one group while software application maintenance is performed by another.

Keeping current with system updates and patches can be overwhelming. Not only are there often many, but decisions about which are critical, which are merely useful, and which are unnecessary or even potentially harmful, must be made quickly. Automated tools can make the identification and evaluation stage easier by monitoring the current patch status of the server or workstation -- or scanning it on demand -- and comparing the status with the ideal configuration for the system, producing recommendations for patch installation.

Before deploying patches to the wider enterprise, deployment should be conducted in a test environment that mirrors the production environment. At a minimum the environment should represent all critical applications, and ideally, all enterprise platforms. If replication of the production hardware is not possible, at least patch compatibility with operating systems and applications should be tested. Test deployment should begin with the least critical servers first.

Proof of concept of Database Patch Management at Sachs and Associates: Defines test environment; install HFNetChkPro; test patch management process (scan, assess, deploy, report). Implementation includes integrating HFNetChkPro with enterprise management systems and third-party vulnerability assessment products; execute successful rollout of HFNetChkPro.



Article Source: http://www.eArticlesOnline.com

About the Author:
Erik is a well known author who writes on the topics related with Database Patch Management, Outsource CIO Company and Rightfax Software for the site www.sachsconsulting.com.

Tags: , , , ,

Please Rate this Article

 

Not yet Rated

Click the XML Icon Above to Receive Computers-and-Technology Articles Via RSS!

Recent Related Articles From Computers-and-Technology

  • The Cheater's Guide To Choosing Fiber Optic Patch Cables

    What is a fiber optic patch cable

    Fiber optic patch cable, often called fiber optic patch cord or fiber jumper cable, is a optical cable terminated with connectors on both ends. It has two major application areas: computer work station to outlet and patch panels or optical cross connect distribution center. T ...     Read

  • Apple Patch Diet Benefits
    By: T. Pierce | Mar 10th 2008
    Weight loss is a multi-billion dollar industry worldwide. Popular non-invasive techniques for weight loss include diets, weight loss pills, herbal diets and saunas. Although, each of the above mentioned techniques have their pros and cons and the effectiveness of techniques vary from person to person, none of the techniques ... Read

  • Digital Asset Management System- Related Roadmap About Digital Asset Management
    By: D Kulkarni | Mar 9th 2009
    If you are looking for information about a digital asset management system, you will find the below related article very helpful. It provides a refreshing perspective that is much related to a digital asset management system and in some manner related to HSBC asset management, MGL asset management, inventory management soft ... Read

  • Content Management System Forms A Crucial Part Of Websites
    By: Brainwork | Dec 22nd 2010
    Websites prevailing on the internet has to face immense competition every day due to large number of them existing online. Thus, it becomes essential for the companies to keep it updated and provide refreshment to it regularly. Read

  • Outsourced Patch Management
    By: Greg Sachs | Feb 20th 2008
    Outsourced patch management supports your need to maintain secure mission-critical systems while controlling your operational costs. Patch management actually involves acquiring, testing, and installing multiple patches to an administered computer system. Read

  • Patch Management
    By: Greg Sachs | Dec 1st 2007
    Patch management process involves acquiring, testing, and installing multiple patches to an administered computer system. For more information, visit us at www.sachsconsulting.com. Read

  • How To Choose The Proper Fiber Optic Connector For Your Ftth Installation

    Fiber optic connectors can be divided into three groups: simplex, duplex and multiple fiber connectors.

    Simplex connector means only one fiber is terminated in the connector. Simplex connectors include FC, ST, SC, LC, MU and SMA.

    Duplex connector means two fibers are terminated in the connector ...     Read

  • What Everybody Ought To Know About Led's Applications In Fiber Optic Communication System

    :: Why are LEDs used in fiber optic communication systems.

    LED stands for light-emitting diode. It is a semiconductor device which converts an electrical current into light.

    LED has very high light conversion efficiency and generates little heat. It possesses some characteristics that make it a ...     Read

  • How Can You Profit From An Integral Quality Management System?
    By: Eric R.P.Knieriem | Sep 25th 2007
    This Quality Management System is based on two parts. Part one is concerned with your actions. In the article it is represented by the numbers 1 to 5. The second part is all about the results you get. It is in measuring the results - keeping metrics and using them as a platform for learning and adjustments. Applying both pa ... Read

  • Asset Management System- Significant Tips About Global Asset Management
    By: D Kulkarni | Mar 7th 2009
    It's difficult to provide accurate asset management system information, but we have gone through the rigor of putting together as many asset management systems related information as possible. Even if you are searching for another information somehow related to enterprise software, Goldman Sachs asset management careers, fi ... Read

eArticlesOnline Authors:


Publishers:


Everyone:

Copyright © 2005-2011 eArticlesOnline, LLC - All Rights Reserved
Terms of Service | Privacy Policy