| 基于B/S模式的数据库应用系统安全 |
| |
| 引用本文: | 倪庆,毛宇光.基于B/S模式的数据库应用系统安全[J].微机发展,2014(9):133-136. |
| |
| 作者姓名: | 倪庆 毛宇光 |
| |
| 作者单位: | 南京航空航天大学计算机科学与技术学院,江苏南京210016 |
| |
| 基金项目: | 基金项目:国家自然科学基金资助项目(41301407) |
| |
| 摘 要: | 随着数据库技术和管理信息系统的发展,两者的结合越来越紧密,其安全性正逐步引起人们的重视。数据库应用系统是在数据库管理系统支持下建立的以数据库为基础和核心的计算机应用系统,由数据库系统、应用程序系统和用户组成。文中主要探讨了基于B/S模式的SQL Server数据库应用系统的安全问题。结合B/S模式的三层结构,分别从应用程序、服务器和数据库层次进行安全性研究。其中,应用程序安全采用输入验证、输出编码和会话管理技术;服务器安全采用安全协议、操作系统安全、防火墙技术和防SQL注入攻击技术;数据库安全技术采用用户认证、访问控制、数据加密、审计追踪和视图机制技术。
|
| 关 键 词: | B S模式 SQL Server 应用程序安全 服务器安全 数据库安全 |
Database Application System Security Based on B/S Model |
| |
| NI Qing,MAO Yu-guang.Database Application System Security Based on B/S Model[J].Microcomputer Development,2014(9):133-136. |
| |
| Authors: | NI Qing MAO Yu-guang |
| |
| Affiliation: | ( College of Computer Science and Technology, Nanjing University of Aeronautics and Astronautics, Nanjing 210016 ,China) |
| |
| Abstract: | With the development of database technology and information management system, the combination of them is becoming much closer, and their security is attracting more and more attention. Database application system is kind of application system established with the help of database management system taking database as the basis and the core, consisting of database system, application system and users. It mainly discusses the security problem of B/S based SQL Server database application system. Combined the three layer structure of B/S model, research the security from program, server and database. Application security involves input validation, output coding and session management. Server security involves security protocols, operating system security, firewall technology and anti-SQL injection attacks. Database security techniques include user authentication, access control, data encryption, audit trail, view mechanism and so on. |
| |
| Keywords: | B/S model SQL Server application program security server security database security |
| 本文献已被 维普 等数据库收录! |
|
