DBMS权限管理和滥用侦测的设计与实现

文中介绍了一种DBMS权限管理和数据库滥用侦测系统的设计和实现。在其于角色访问控制的基础上，利用DBMS的审计功能，将用户审计信息与实际的权限管理信息相比较，从而侦测出内部合法用户的滥用行为。这种方法填补了目前安全模式存在的漏洞，是一种有效的安全措施。

Design and implement of authorization administration and misuse detection for DBMS

This paper introduces a authorization administration and misuse detection for DBMS. On RBAC, using the audit function of DBMS, by comparing user's audit to the authorization administration information, this System can detect user's misuse behavior to DBMS. This method makes up for security bug, it is a fine security measure.