[1]倪庆,毛宇光. 基于B/S模式的数据库应用系统安全[J].计算机技术与发展,2014,24(09):133-136.
 NI Qing,MAO Yu-guang. Database Application System Security Based on B/S Model[J].,2014,24(09):133-136.
点击复制

 基于B/S模式的数据库应用系统安全()
分享到:

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:
24
期数:
2014年09期
页码:
133-136
栏目:
安全与防范
出版日期:
2014-09-10

文章信息/Info

Title:
 Database Application System Security Based on B/S Model
文章编号:
1673-629X(2014)09-0133-04
作者:
 倪庆毛宇光
 南京航空航天大学 计算机科学与技术学院
Author(s):
 NI Qing MAO Yu-guang
关键词:
 B/S模式SQL Server 应用程序安全服务器安全数据库安全
Keywords:
 B/S model SQL Serverapplication program securityserver securitydatabase security
分类号:
TP311.13
文献标志码:
A
摘要:
 随着数据库技术和管理信息系统的发展,两者的结合越来越紧密,其安全性正逐步引起人们的重视。数据库应用系统是在数据库管理系统支持下建立的以数据库为基础和核心的计算机应用系统,由数据库系统、应用程序系统和用户组成。文中主要探讨了基于B/S模式的SQL Server数据库应用系统的安全问题。结合B/S模式的三层结构,分别从应用程序、服务器和数据库层次进行安全性研究。其中,应用程序安全采用输入验证、输出编码和会话管理技术;服务器安全采用安全协议、操作系统安全、防火墙技术和防SQL注入攻击技术;数据库安全技术采用用户认证、访问控制、数据加密、审计追踪和视图机制技术。
Abstract:
 With the development of database technology and information management system,the combination of them is becoming much closer,and their security is attracting more and more attention. Database application system is kind of application system established with the help of database management system taking database as the basis and the core,consisting of database system,application system and users. It mainly discusses the security problem of B/S based SQL Server database application system. Combined the three layer structure of B/S model,research the security from program,server and database. Application security involves input validation,output coding and session management. Server security involves security protocols,operating system security,firewall technology and anti-SQL injection at-tacks. Database security techniques include user authentication,access control,data encryption,audit trail,view mechanism and so on.

相似文献/References:

[1]郭秀娟 王春光.基于B/S模式的毕业设计管理系统开发与实现[J].计算机技术与发展,2010,(03):239.
 GUO Xiu-juan,WANG Chun-guang.Development and Implementatin of Graduation Project Management System Based on B/S Mode[J].,2010,(09):239.
[2]吴丽 赵卫东.基于WebGIS的城市基础设施管理系统的设计[J].计算机技术与发展,2010,(01):217.
 WU Li ZHAO Wei-dong.Design of City Infrastructure Management System Based on WebGIS[J].,2010,(09):217.
[3]马丽红 蔡东宏.用ASP开发基于B/S模式的科技管理信息系统[J].计算机技术与发展,2008,(01):223.
 MA Li-hong,CAI Dong-hong.Design of Science and Technology MIS with ASP Based on B/S[J].,2008,(09):223.
[4]袁健美.基于JSP的B/S动态网站开发及数据库连接[J].计算机技术与发展,2007,(06):29.
 YUAN Jian-mei.B/S Dynamic Website's Development and Database Connection Based on JSP[J].,2007,(09):29.
[5]宋亚林 路扬 冯志敏[].基于Web的医院体检系统设计与实现[J].计算机技术与发展,2007,(09):206.
 SONG Ya-lin,LU Yang,FENG Zhi-min.The Design and Realization of Web - Based Hospital Physical Examination System[J].,2007,(09):206.
[6]杜秀全 程家兴.基于Delphi+ASP下的B/S模式开发[J].计算机技术与发展,2007,(02):175.
 DU Xiu-quan,CHENG Jia-xing.Development of B/S Pattern Based on Delphi and ASP Technology[J].,2007,(09):175.
[7]胡为成[] 王本年 程转流[].基于RUP思想和B/S模式的考试系统[J].计算机技术与发展,2006,(03):137.
 HU Wei-cheng,WANG Ben-nian,CHENG Zhuan-liu.A Test System Based on Idea of RUP and B/S Mode[J].,2006,(09):137.
[8]徐晓霞.基于.NET的高校科研管理系统的实现[J].计算机技术与发展,2006,(03):170.
 XU Xiao-xia.Implementation at University Scientific Research Management System Based on. NET[J].,2006,(09):170.
[9]饶云波 张应辉 周明天 曾庆华.基于ASP.NET的电子商务平台设计与实现[J].计算机技术与发展,2006,(05):160.
 RAO Yun-bo,ZHANG Ying-hui,ZHOU Ming-tian,et al.Design and Realization of Electronic Commerce Platform Based on ASP. NET[J].,2006,(09):160.
[10]隋宗见 程春玲 崔国亮.面向三网融合的综合网管系统的设计与实现[J].计算机技术与发展,2011,(11):129.
 SUI Zong-jian,CHENG Chun-ling,CUI Guo-liang.Design and Implementation of Integrated Network Management System for Triple Play[J].,2011,(09):129.

更新日期/Last Update: 2015-04-01