Research On B/S Model Enterprise-level Database Application System Security Framework

With the trend of global economic integration, enterprises, which are in order to occupy more market share and lower costs, more efficient access and process information in the fierce market competition, have selected the B/S model database application system to complete the information dealt with. Because of the Internet as a community-oriented open-pool, however, B/S model database application system not only brings convenience, but also generates a lot of security problems. It is fatal that B/S model database applications to the safety of the impact of enterprises. At present, the security of B/S model enterprise-level database application system has become one of the key factors affected whether enterprises has market competitiveness or not.Currently in the development of B/S model enterprise-level database application system, the developer solves the security problem where it occurs in the development of the system and there is not a unified plan, high universality, and high integration security framework to resolve the security issues become more feasible. Based on this, the paper presents and makes the success of security framework of B/S model enterprise-level database application system.The main research and innovation are as follows:①This paper makes the key research both at home and abroad on the B/S model enterprise database applications on the security of the current situation and existing problems.②For how to ensure the security of the B/S model enterprise-level database applications, author from the analysis of B/S model database application system of security needs, according to its own security needs, proposed a universal stronger, more integrated High security framework for better security - IAAC security framework.③In the IAAC framework , author combined with the shortcomings of existing security mechanism, it achieves a identity authentication, access control and transmission of confidential design through the improvement of Challenge/ response mechanism, RBAC access control mechanism for the expansion, a combination of DES algorithm and the RSA algorithm.④We have the framework of the project in the deployment of modules and realize of the universal data access layer in the factory model so that it facilitates a framework for its expansion and system integration. Application and testing show that the proposed security framework can easily carry out system integration and realizing the identity authentication, access control, encrypted transmission of the security strategy, not only enhance the B/S model enterprise-level database application system security, and improved The efficiency of software development.