摘要
数据库的集中访问控制和审计是企业信息管理系统中的重要的领域.研究开发了基于ORACLE数据库安全访问控制机制的实现策略,包括:通过集中的策略配置,实现对分布式Oracle数据库的集中访问控制和审计;通过封装PL/Sql Developer数据库管理工具实现对Oracle数据库的安全访问控制,不改变PL/Sql Developer工具的数据库DBA的操作习惯;系统能够分DBA角色、分数据库用户灵活设置数据库管理策略,从而实现不同角色的DBA能够访问不同的数据库模式或数据库模式组合,实现对SQL脚本的审查和审计.系统实施后,所有数据库服务器和应用服务器的操作系统密码及数据库系统密码收归系统和专门运行维护部门统一管理.
The centralized access control and audit of database is an important security policy of corporate information manage- ment system. This paper explores the implementation strategies for Oracle database security access control, including the reali- zation of the centralized access control of the distributed Oracle database and audit through centralized policy configuration, the realization of the security access control of the Oracle database through encapsulating PL/Sql Developer database management tools, without changing database DBA operating practices of PL/Sql Developer tools ; the system can configure the database man- agement strategy based on different DBA roles or database users so that different DBA roles can have access to different data- base schema or a combination of database schema, realizing the SQL script review and audit. After the system implementation, all the passwords, including the database servers, the application server operating systems, and the database systems, arc under the unified administration of the system and specialized operating maintenance department.
出处
《西南民族大学学报(自然科学版)》
CAS
2017年第5期508-515,共8页
Journal of Southwest Minzu University(Natural Science Edition)
基金
内蒙古自治区高等学校科学研究项目(NJZC16191)
内蒙古自治区教育科学"十三五"规划2016年度课题(NGJGH2016019)
