|
|||||
|
|
| 信息系统安全通过程序设计多方位控制策略的探讨 | |
| 引用本文: | 孟宪虎,陈锐.信息系统安全通过程序设计多方位控制策略的探讨[J].计算机工程与科学,2006,28(3):11-13. |
| 作者姓名: | 孟宪虎 陈锐 |
| 作者单位: | 1. 浙江财经学院信息学院,浙江,杭州,310012 2. 哈尔滨工业大学管理学院,黑龙江,哈尔滨,150001 |
| 摘 要: | 信息系统安全需要从多方面予以保障。可是,人们当前在很多情况下是分开考虑的,比如有些主要从数据库方面关注,考虑数据库自身的数据安全、访问控制和数据一致性;而有些着眼于从程序结构、设计方法等来满足系统安全。实际中,用户使用数据库中的数据不是直接从中得到的,而是经过展现在他们面前的程序界面实现的,从用户看到的 的程序界面到数据库本身的数据,中间可能经过了多个程序控制的环节,而将数据库和程序设计一起考虑,如何提高系统的安全性并不多见。本文探讨了如何通过程序设计对数据库进行多方位控制来保证信息系统所使用的数据的安全。 |
| 关 键 词: | 信息系统 数据库 数据安全 程序设计 多方位控制 |
| 文章编号: | 1007-130X(2006)03-0011-03 |
| 修稿时间: | 2004年5月18日 |
On the Strategies for Controlling the Data Security of Information System Through Programing Based on Multiple Aspects |
|
| MENG Xian-hu,CHEN Rui.On the Strategies for Controlling the Data Security of Information System Through Programing Based on Multiple Aspects[J].Computer Engineering & Science,2006,28(3):11-13. | |
| Authors: | MENG Xian-hu CHEN Rui |
| Abstract: | The security of information systems needs to be guaranteed from multiple aspects. However, at present, people consider them separately. For example, some people focus on the database, such as data security, the access control and data consistency of the database itself; while others concentrate on the program structures, design methods and other aspects to satisfy the needs of system security. Actually, the data used by users is not acquired directly from the database, but from the visual interface for users. From the visual interface to the data in the database, there may be several program-control steps, but how to associate the database with the program design to assure the system security is rare. This paper discusses how to control the database from multiple aspects through programming, and then guarantee the security of the data used in information systems. |
| Keywords: | information system database data security program design multiple-aspect control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 | |
| 点击此处可从《计算机工程与科学》下载全文 | |