Making your
SAP® system
even more secure
SAST SystemTrack –
The most comprehensive SAP® security
analysis software on the market
Control and monitor your entire
SAP® system configuration
Every software platform will at some point become vulnerable:
Manufacturers regularly point out system errors, different security
portals alert us to potential targets for attack, and even SAP® AG
regularly publishes Security Notes containing information on
vulnerabilities in the software’s data network. Users are therefore
constantly asking themselves: Is my SAP® system secure?
To answer this question and to close any potential vulnerabilities,
a thorough analysis is required. Security-related topics are often
discussed purely on the level of authorizations within an SAP®
system. To see the bigger picture, however, all system levels need to
be thoroughly examined for weaknesses.
Why choose SAST SystemTrack?
n Overview of the overall security level
Risk of large-scale data loss
A SAP® system that is not protected on all levels poses a risk and is
open to attack. Data theft or data loss through sabotage can have
serious consequences for companies. Irreparable damage to the
corporate image, compensation payments, or the disruption of regular
business are just three examples. It is even conceivable that entire
SAP® systems could be lost.
for your entire SAP® system landscape
n It eliminates weaknesses by classifying
risks, presents target specifications and
implementation recommendations
n Complete set of checks
Presentation Level
n Comprehensive checks in accordance with
DSAG Audit guidelines, BSI recommendation,
Business Process
Checks
Management
Reporting
and Transactions
and SAP® Security Guides
n Monthly update based on
Checks
SAP® Configurable
SAP® Authorizati
Database /
Infrastructure
Level
n It is used as a central monitoring console
Highlights:
All levels need to be monitored
Application Level
of your SAP® systems
SAP® Security Patch Day updates
on Concept
tem
SAP® Basis Sys
Database
Operating
System
General
IT Checks
Check relevant infrastructure components
SAST SystemTrack monitors the relevant security levels, including the
Analysis of system parameters
and basic settings
operating system and database parameters, as well as critical SAP®
notes. SAST SystemTrack even analyzes the code of custom-developed
ABAP programs to pinpoint any weaknesses in the source code.
Analysis of the database and
configuration
n Defined users, roles, and profiles
Identify and fix security vulnerabilities early on
n Security-critical database parameters
You can use SAST SystemTrack to obtain meaningful reports that
n Evaluation of the database audit trail
provide you with an overview of the overall situation of your SAP®
systems. This allows you to take early action.
SAP® software configuration
n Maintenance and evaluation of critical
Automatic vulnerability scan based on
standardized check modules for
n Operating system (Unix, Windows)
SAP® notes
n Analysis of whether critical SAP® notes
and patches have been installed
n Databases (Oracle, MS SQL, MaxDB, DB/2)
n Network configuration
n ABAP and JAVA stacks
n SAP® parameters
n SAP® Internet framework
n SAP® BW configuration
n Basic settings in the FI and HR modules
Benefits of SAST SystemTrack:
n More than 3,000 checks in the
standard scope of delivery
Analysis of the ABAP/4 Workbench
n Defined ABAP/4 developers
n Users with developer keys
n Registered SAP® Software Change Registration
(SSCR) objects
n Reports without authorization check
n Automated checks of security-relevant
parameters and settings
n Analysis on all Basis platforms from
SAP® R/3 through to NetWeaver 7.x
n Security report with clear guidelines
for eliminating weaknesses
n Modified objects
n Transports with critical content
Take advantage of our experience in securing
SAP® systems for long-lasting protection of your system landscapes.
For more information, see:
1310 . IWS
www.akquinet.de/sast
Contact: akquinet AG · Paul-Stritter-Weg 5 · 22297 Hamburg, Germany · Tel: +49 40 881 73-0 · info@akquinet.de · www.akquinet.de