| As the network technology is being developed rapidly and the Internet is popularized,database is being used abroad from it was invented to now. Database has been penetrated toeverywhere, however, database security is becoming more and more important, the previoussecurity technology can't adapt to new situation.The database security is to protect database from being transpired, altered or damaged byunauthorized access. As the information technology is being developed, people focus ondatabase security. Because none of system is perfect, those who steal, damage data withmalice manage to break security control. However, the threats database faces may come frominside damages, and how to protect database system becomes challengeable. So protectingdatabase system by audit mechanism is important. All the operations can be loggedautomatically to audit log by audit mechanism.At first, the paper presented the background and significance of the thesis, andintroduced the database security research status and several database security mechanism.Then presented the database security audit principle, and made a study on the model ofsecurity audit, and analyzed audit flow and audit methods detailedly. Furthermore, the paperpresented database audit system with using Microsoft SQL Server 2000 as platform. Andaccording to the model, the paper used SQL Server 2000 Profiler to record information ofoperations as audit sources. We used two methods -misuse detection, anomaly detection -toanalyze audit sources. Finally, the paper realized security audit function by using Visual C++platform through ODBC interface. |
PDF Full Text Request