| 一个基于误用检测的数据库安全审计系统 |
| |
| 引用本文: | 李晶媛,韩慧莲.一个基于误用检测的数据库安全审计系统[J].计算机与数字工程,2009,37(10):116-119. |
| |
| 作者姓名: | 李晶媛 韩慧莲 |
| |
| 作者单位: | 中北大学仪器科学与动态测试教育部重点实验室,太原,030051 |
| |
| 摘 要: | 数据库审计是数据库安全的重要组成部分,包括日志记录和日志分析两部分。在SQL Server数据库中,使用审计功能只能获取审计跟踪的信息,并不具备日志分析的能力。针对SQL Server数据库审计功能的不足,给出了一个数据库安全审计系统MyAudit的设计和实现。MyAudit系统使用误用检测方法进行审计分析,能够检测出攻击企图、伪装攻击两种类型的数据库攻击。
|
| 关 键 词: | 数据库审计 审计数据采集 规则库 误用检测 |
A System of Database Secure Audit Based on Misuse Detection |
| |
| Li Jingyuan,Han Huilian.A System of Database Secure Audit Based on Misuse Detection[J].Computer and Digital Engineering,2009,37(10):116-119. |
| |
| Authors: | Li Jingyuan Han Huilian |
| |
| Affiliation: | Li Jingyuan Han Huilian (Key Laboratory of Instrumentation Science & Dynamic Measurement(Ministry of Education), North University of China, Taiyuan 0300,51) |
| |
| Abstract: | Database audit is an important part of database security, it contains both log system and log analysis system. In SQL server database, using audit function can only get information about audit trail, not including the ability of analyzing the log records. In this paper, considering the drawback of audit in SQL server database, the design and realization of a secure audit system called MyAudit are presented. It uses a misuse detection method to audit, which can be used to detect two kinds of attack in the database, such as assault with intent and simulated attack. |
| |
| Keywords: | database audit audit data collection rule base misuse detection |
| 本文献已被 维普 万方数据 等数据库收录! |
|
