北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2006, Vol. 29 ›› Issue (5): 84-87.doi: 10.13190/jbupt.200605.84.zhangch

• 研究报告 • 上一篇    下一篇

Oracle数据库安全增强系统的设计与实现

张春 王永亮 刘峰   

  1. 北京交通大学计算机与信息技术学院 北京 100044
  • 收稿日期:2005-09-15 修回日期:1900-01-01 出版日期:2006-10-30 发布日期:2006-10-30
  • 通讯作者: 张春

Design and implementation of security enhanced system for Oracle

ZHANG Chun,WANG Yong-Liang and LIU Feng   

  1. school of electronics and information engineering, Beijing Jiaotong University, Beijing 100044
  • Received:2005-09-15 Revised:1900-01-01 Online:2006-10-30 Published:2006-10-30
  • Contact: ZHANG Chun

摘要:

大多数主流商用数据库产品安全级别较低,从实际角度考虑提出通过安全增强系统提高数据库系统安全性。在讨论数据库安全主要方面的基础上,结合oracle给出设计方案,并对系统进行抗攻击能力分析。该系统在网络隔离的基础上通过身份认证和元组级强制访问控制来保证数据库系统的安全。通过该系统提高数据库系统安全性切实可行。

关键词: Oracle,, 网络隔离,, 身份认证,, 强制访问控制

Abstract:

Most of the commercial DBMS products are lower in the security class ratings. Considering facts, a scheme to strengthen the security of database by a security enhanced system is proposed. The design of security enhanced system is specified on the base of discussing the security aspects of database and this system is also taken to an anti-attack analysis. This system ensures the security of database server by certificating authority and tuple-level mandatory access control on the basis of network isolation. Using this system to strengthen the security of database is practical and feasible.

Key words: oracle, network isolation, certification authority, mandatory access control

中图分类号: