计算机应用与软件Issue(8):38-42,179,6.DOI:10.3969/j.issn.1000-386x.2015.08.009
基于 XML的 Web 数据库安全中间件研究与设计
RESEARCH AND DESIGN OF XML-BASED WEB DATABASE SECURITY MIDDLEWARE
摘要
Abstract
In view of the Web database security problems and the flexible and changeable security demand of enterprises, we analysed the main factors that affect the security of Web database, and constructed an XML-based Web database security middleware.Thorough discussion are focused on four aspects, including the identity authentication, access control, leak detection and security auditing, based on the micro management and service-oriented philosophy.The middleware uses monitor and filter to implement user access control, uses vulnerability scanner for loopholes inspection, and uses log recorder for auditing tracking.In order to more accurately prevent SQL injection attacks and so on, it uses regular expression to define filtering rules.It is proved by the experiment and simulation that the middleware can dynamically adapt to the environmental changes and effectively prevent the attacks on the Web database by internal and external user's and the data leak-age.关键词
Web数据库/XML/中间件/安全Key words
Web database/XML/Middleware/Security分类
信息技术与安全科学引用本文复制引用
王振辉,王振铎,谢膺白,支侃买..基于 XML的 Web 数据库安全中间件研究与设计[J].计算机应用与软件,2015,(8):38-42,179,6.基金项目
陕西教育厅科研计划项目(12JK1055)。 ()
