The Research Of Security Mechanism On The Network Database

Network databse is the information warehouse under opening condition, which manages a lot of datum. On the same time.it has to be confronted with various security attack. Once the data information in the network database was lost, damaged or juggled.it would make enormous loss. Today, the security managerment of network database is become more and more important.The security mechanism of network database is related with many aspects.Though the analysis of architecture and software arrangement, I divide this problem into four layers: network security mechanism, DBMS security mechanism, operating system(server) security mechanism and application system security mechanism. Each aspect is the hotspot of the security research nowadays.This thesis, based on the security technology and the database theory,combined with the encrpytion techniques, identification techniques and access control theory etc, mainly makes research on the access control in the security mechanism of server,client applicationand a rapidly developing DBMS----Mysql. It gives the way of design andrealization of security control in network database application system.DBMS has its own security management, which prevent the non_accredited user from dealing with the datum in the database. The security problem of the application programme is to prevent the non_accredited user from doing the illogical application performance on application system. Its realization lies on the developer of the programmer. How to combine the security machenism of the DBMS and the application programme into an integrated and uniform security controlsystem? The thesis puts forward an extended RBAC model. Its application way makes the authority and maintance easy. It is easy to control, and easy to explant.Current way to access control on web server mostly based on indiviual user, or the simple matrix management, which can't meet the management needs of large system. How to use the existing security approaches to improve the web server access control security. The thesis uses encrypt arithmetic to construct security cookie, to realize the secure role_based web access control.Finally the author uses part of the research result in a project --Network Teaching System to realize the security access control.