摘要
文章主要研究MS SQL Server 2000和2005两个版本的数据库系统的身份认证机制及其攻击方法。借助软件分析完整地还原了SQL Server用户的登录过程,发现SQL Server 2000的认证机制极其脆弱,而SQL Server 2005采用标准的TLS安全协议对用户认证信息进行了封装保护。通过深入分析确信SQL Server 2005在TLS的使用上存在重大缺陷,极易受到中间人攻击而导致敏感信息的泄漏。
This paper focuses on the mechanism of identity authentication in MS SQL Server database and corresponding attack methods. By means of software dynamic analysis we obtained the login procedure of SQL Server users, finding out that in the authentication for MS SQL Server 2000 user an extremely weak algorithm is adopted, while MS SQL Server 2005 makes use of the well-known TLS protocol to encapsulate user's authentication information including password. However, our detailed studies discover its fatal misuse of TLS in MS SQL Server 2005, which is vulnerable to MITM attack and results in the leakage of sensitive information.
出处
《信息工程大学学报》
2008年第2期229-232,共4页
Journal of Information Engineering University
