Research On Security And Audit Components For Open-Source Database System

At present,database has been widely used in the fields of sensor data fusion,online medical diagnosis and big data for health.The demand of database application presents the trend of diversification of data sources and customization of user demand.Open-source database software has the advantages that commercial database does not have,such as extensibility and the ability to customize on demand,so it is very suitable for use in specialized fields.However,there are some problems in opensource database software,such as imperfect tools,lack of targeted and integrated security audit solutions.Therefore,it is very beneficial to study the security and audit technology of open-source database and its components.In view of the above requirements,this thesis proposed an integrated security and audit component for open-source database.The specific work of this thesis is as follows:Firstly,taking the typical open-source database Postgre SQL as an example,this thesis analyzed its code structure,and put forward a solution to improve the security of open-source database.Secondly,the function of database security and audit component is planned and implemented.The component is combined with opensource database Postgre SQL as an extension,including four modules: Audit rights management,Audit log management,Database table audit management and Audit monitoring alarm.The Audit rights management module can control the audit authority of ordinary database users.The function of Audit log management module includes audit rule definition,audit log record and audit log query.Database table audit management can accurately audit the specific database tables.The audit monitoring alarm module tracks the user's operation according to the alarm rules,and implements the alarm after the occurrence of risky operation.Thirdly,based on Qt framework,a user-friendly interactive interface is provided,which is convenient for security auditors to configure audit rules and check audit results and alarm records in time.Finally,the database security and audit components proposed in this thesis are tested and analyzed.The component is tested by several test cases of SQL test statements with high speed and high concurrency injection.The results show that the security and audit component designed in this thesis can be combined with open-source database Postgre SQL conveniently and stably in the way of expanding the component,supporting the monitoring and recording of high-speed and high concurrency database operation,and quickly displaying the audit results through the interface.The scheme proposed in this thesis can be extended to the research of other open-source databases.