摘要
为了提升数据库安全性能,设计基于SSL的数据库安全代理系统。系统借助SSL的私密通信能力、用户身份验证能力和数据参数验证能力构建SSL安全代理接口,为用户访问需求验证提供数据和信道的加解密处理,防止不法分子攻击数据库。构建了以委任代理、访问代理和数据代理为主要功能的系统功能模型,给出数据通信流程,并对实现数据通信的握手协议和SSL记录协议层进行介绍。经实验验证可得,所设计的数据库安全代理模型可有效避免攻击,防止数据库私密数据被盗取。
A database security proxy system based on SSL was designed to improve the security performance of database.The SSL security proxy interface is constructed in the system by virtue of the private communication capacity,user authentication capacity and data parameter validation capacity of SSL to provide the encryption and decryption of data and channel for user access demand,and prevent the lawbreaker attacking the database. The system function model taking the mandate agent,access agent and data agent as the main functions was constructed. The data communication process is given. The handshake protocol and SSL record protocol layer to implement the data communication are introduced. The experimental verification results show that the designed database security proxy model can effectively avoid the attack,and prevent the database private data being stolen.
出处
《现代电子技术》
北大核心
2017年第13期98-100,105,共4页
Modern Electronics Technique
关键词
数据库
安全代理
握手协议
SSL记录协议层
database
security proxy
handshake protocol
SSL record protocol layer
