With the development of Internet, database system in network is threatened by the attack of hackers and viruses. How can we guarantee the confidentiality, integrity, reliability and availability of data? Though the existing database management systems can provide some protection measures such as access control, backup recover, and role-based management, there are still many vulnerabilities such as null password of username "sa", fixed IP access port. Hackers can get the administrator's right and control all the system using these vulnerabilities.This dissertation mainly discusses the security of the database management systems and points out their disadvantages. A new method of protecting database is proposed, which has been used in webpage detection and protection systems. This method makes use of trigger and audit functions based on the database management system. It can detect the illegal behavior by the analysis of audit information and complete the functions of automatic detection, automatic alarm and recover data.The research done in this dissertation provides a new method for web database protection and has important practical values.
|