基于COM组件三层架构下数据库安全审计的应用  被引量:3

Application of Database Security Audit Based on the Three-layer Architecture of COM Components

在线阅读下载全文

作  者:印剑锋[1] 岳丹[1] 

机构地区:[1]首都医科大学宣武医院信息中心,北京市西城区长椿街45号100053

出  处:《中国数字医学》2018年第1期94-96,111,共4页China Digital Medicine

摘  要:目的:实现COM组件三层架构下数据库访问的全面审计及精准溯源,对数据库的各种访问方式和访问行为进行有效地监控和审计。方法:通过对COM组件独特的架构进行分析研究,对应用层中间件及数据库的访问数据包进行抓取,采用DPI+DFI技术结合数据通讯原理对抓取到的数据包进行深度解析。结果:根据COM组件在医院三层架构系统中实际应用,结合医院信息化安全建设需求,设计出符合医院实际需求的三层架构数据库安全审计系统。结论:基于COM组件三层架构的数据库审计系统能有效地解决该组件架构下溯源难的问题,全面监控预警医院信息化系统中的统方、违规等数据库高危操作,能很好地满足医院安全信息化的建设要求。Objective: To achieve the comprehensive audit and accurate traceability of database access under the three layer architecture of COM components, and to monitor and audit all access methods and access behavior of database effectively. Methods: Through the analysis of the unique architecture of COM components, the access data packets of middleware and database are captured, and the DPI+ DFI technology is used to analyze the data packets. Results: According to the actual application of COM component in the three-layer architecture system, combined with the requirements of hospital information security construction, the security audit system of three-layer architecture database was designed according to the actual needs of the hospital. Conclusion: Database audit system based on three-layer architecture of COM components can effectively solve the problem of difficulties in traceability, it can fully monitor and early warning the high-risk operations of information system database in hospital, such as all parties and other illegal operations, and can well meet the safety requirements of hospital information construction.

关 键 词:C0M/C0M+/DCOM 中间件三层架构 数据库安全 

分 类 号:R197[医药卫生—卫生事业管理]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象