摘要
目前,我国计算机信息系统中普遍使用的是国外厂商的数据库管理系统,其内部操作不透明,无法阻止机密信息泄漏、滥用资源等行为,对于安全相要求较高的部门这一后果更为严重。虽然绝大部分数据库管理系统自身带有审计功能,但是它们都存在审计文件格式复杂,开启审计功能后系统性能下降等弊端。提出了一种新型的在线数据库审计系统的设计与实现方法,该方法采用旁路监听方式实时采集客户端对数据库的操作命令,不必修改现有网络结构,不影响正常业务的运行,而且审计信息格式固定,便于审计数据的事后查询和统计分析。
At present, most commonly used DBMS in our country are principally developed by foreign manufacturers. Because of opacity in its internal operation, we can't make sure that no secrets leak out. Although most DBMS have the ability of auditing, there are many defects, such as complex audit file format, low capability when audit ability is enabled. A new type database audit system which uses sniffing through a bypass is proposed. It works perfectly without changing existing network architecture and affecting normal business. Its unified audit data files makes querying and statistics more easily.
出处
《计算机工程与设计》
CSCD
北大核心
2007年第5期1012-1015,1023,共5页
Computer Engineering and Design
基金
国家科技中小型制造业资源计划ERP管理系统创新基金项目(03C26214211057)
