摘要
用户会话还原是数据库安全审计的重要手段,可以将用户对数据库的操作历史按照顺序重现。针对现有的DB2审计设施无法直接还原用户会话的问题,在研究DB2审计日志文件的内容和格式的基础上,设计并实现一个用户会话还原分析器。该分析器可以完成审计日志文件的读取和数据库操作记录的还原,并可以分析操作记录中相应字段将同一个会话的操作按顺序关联起来,采用XML格式存储还原后的用户会话结果。
Design and implementation of user's session recovering analyzer in DB2 databeseAhstraet: As art important method of database audit, tracing of user's session could recover the process of user's operations in database. In order to solve the problem of unable to directly recover user' s session in audit facility of DB2, an user' s session recovering analyzer is designed and implemented based on detail analysis of the content and format of DB2 audit log file, which can extract the users' operation records from audit log file and recover different sessions hy associating the audit' s records by the relate key fields. In this recovering analyzer, the output of different sessions' operation process is designed as a XML format.
出处
《计算技术与自动化》
2009年第1期108-111,130,共5页
Computing Technology and Automation
基金
国家自然科学基金项目(60403032)
