DBMS权限管理和滥用侦测的设计与实现

Design and implement of authorization administration and misuse deduction for DBMS

文中介绍了一种ＤＢＭＳ权限管理和数据库滥用侦测系统的设计和实现。在基于角色访问控制的基础上，利用 ＤＢＭＳ的审计功能，将用户审计信息与实际的权限管理信息相比较，从而侦测出内部合法用户的滥用行为。这种方法填补了目前安全模式存在的漏洞，是一种有效的安全措施。

This paper introduces a authorization administration and misuse detection for DBMS. On RBAC, using the audit function of DBMS, by comparing user's audit to the authorization administration information, this System can detect user's misuse behavior to DBMS. This method makes up for security bug, it is a fine security measure.