多层OLTP系统安全之研究
摘要
OLTP(On-Line Transaction Process)联机事务处理系统,是当今信息管理系统中应用极为普遍的信息处理模式,其三层体系结构为信息管理技术提供了诸多便利,但在开放式的计算机网络系统中,并且系统的运行要跨广域网,系统的安全问题是一个重大的研究课题。本人自1996年以来,一直从事联机事务处理(OLTP)系统的研究和开发,在系统体系结构,特别是系统的高可靠性、高可用性和高安全性等方面,做过比较深入的研究。目前,本人参与设计开发的OLTP系统,已经投入试点运行。在这一覆盖全国、跨广域网运行的系统中,本人主要承担了系统体系结构的设计及原型开发,对系统及数据库的安全性进行了严格的测试;主持并参与了系统授权、病毒防治、系统高可靠性、系统高可用性和系统容灾系统的设计。系统实施后,运行状况良好,发挥了巨大的经济效益和社会效益。由于此系统涉及面广,技术含量较高,限于篇幅,在论文的详细阐述中,还不够深入。
I have been undertaking the study and development of OLTP system since 1996. Especially in architecture, high reliability, high availability and high security, I have done the research deeply. Recently, the OLTP system of which I took part in design and development has been run in some units. The system will be deployed all over the country and ran in wide area network. I mainly took charged with the design of the architecture and the development of prototype, and also had a detailed test to the security of the system and database. I led and participated the design of authorization, virus preventing, reliability, availability and disaster toleration. The system has been running very well since it was deployed. We have got a great economic and social benefit. Since the system has a wide use of technology and the paper has a limit to the words, I can't have a detail dissertation
I have been undertaking the study and development of OLTP system since 1996. Especially in architecture, high reliability, high availability and high security, I have done the research deeply. Recently, the OLTP system of which I took part in design and development has been run in some units. The system will be deployed all over the country and ran in wide area network. I mainly took charged with the design of the architecture and the development of prototype, and also had a detailed test to the security of the system and database. I led and participated the design of authorization, virus preventing, reliability, availability and disaster toleration. The system has been running very well since it was deployed. We have got a great economic and social benefit. Since the system has a wide use of technology and the paper has a limit to the words, I can't have a detail dissertation
引文
1,戴宗坤,罗万伯,唐三平等《信息系统安全》金城出版社,2000.9
2,关义章,蒋继红,方关宝,戴宗坤,《信息系统安全工程学》金城出版社 p128-190
3,张尧学,王晓春,赵艳标,《计算机网络与Internet教程》清华大学出版社 2002.2 p248-259
4, Active Defense: A Comprehensive Guide to Network Securty (美) Chris Brenton, Cameron Hunt 著 2001
5,《网络安全性设计》(美)凯(Kaeo,M.)著:潇湘工作室译
6,《IB-NPS3000系列网络安全隔离数据交换系统介绍》翰文春科技有限公司
7,《网络信息安全解决方案》北京天融信公司
8, http://www.microsoft.com
9, Windows 2000 Security Standards Hilel January April 5, 2001
10,吴世忠,祝世雄,张文政等译《应用密码学—协议、算法与C源程序》机械工业出版社 2000,9
11,朱甫臣,《密码学》2000年10月
12,戴宗坤,《电子政务安全总体实施方案》2002年
13, http://www.oracle.com
14,张文典等编译,《计算机安全》高等教育出版社 1990.7
15,《产品白皮书》启明星晨信息技术有限公司 2001.11
16, http://www.ca.com
17, "Securing e-Business at the Application Level" www.ubizen.com
18, Role-Based Administration for Windows 2000 Jane E. Murley July 26, 2001
19,windows 2000网络中的单一注册 白皮书
20, Kerberos Authentication in Windows 2000 Vishwas Gadgil July 27, 2001
21, Windows 2000 Security Standards Hilel January April 5, 2001
22, Windows 2000 Active Directory Security Overview Michael Gnau Sep.13, 2000
23, Basic Security Issues of Active Directory Johnny L. Waddell June 11, 2001
24, Implementing Password Controls and Account Policies Using Windows 2000 Group Policy Carlo Scannella February 15, 2001
25, Step-by-Step Guide to Kerberos 5 (krb5 1.0) Interoperability Posted: January 10, 2000
2,关义章,蒋继红,方关宝,戴宗坤,《信息系统安全工程学》金城出版社 p128-190
3,张尧学,王晓春,赵艳标,《计算机网络与Internet教程》清华大学出版社 2002.2 p248-259
4, Active Defense: A Comprehensive Guide to Network Securty (美) Chris Brenton, Cameron Hunt 著 2001
5,《网络安全性设计》(美)凯(Kaeo,M.)著:潇湘工作室译
6,《IB-NPS3000系列网络安全隔离数据交换系统介绍》翰文春科技有限公司
7,《网络信息安全解决方案》北京天融信公司
8, http://www.microsoft.com
9, Windows 2000 Security Standards Hilel January April 5, 2001
10,吴世忠,祝世雄,张文政等译《应用密码学—协议、算法与C源程序》机械工业出版社 2000,9
11,朱甫臣,《密码学》2000年10月
12,戴宗坤,《电子政务安全总体实施方案》2002年
13, http://www.oracle.com
14,张文典等编译,《计算机安全》高等教育出版社 1990.7
15,《产品白皮书》启明星晨信息技术有限公司 2001.11
16, http://www.ca.com
17, "Securing e-Business at the Application Level" www.ubizen.com
18, Role-Based Administration for Windows 2000 Jane E. Murley July 26, 2001
19,windows 2000网络中的单一注册 白皮书
20, Kerberos Authentication in Windows 2000 Vishwas Gadgil July 27, 2001
21, Windows 2000 Security Standards Hilel January April 5, 2001
22, Windows 2000 Active Directory Security Overview Michael Gnau Sep.13, 2000
23, Basic Security Issues of Active Directory Johnny L. Waddell June 11, 2001
24, Implementing Password Controls and Account Policies Using Windows 2000 Group Policy Carlo Scannella February 15, 2001
25, Step-by-Step Guide to Kerberos 5 (krb5 1.0) Interoperability Posted: January 10, 2000
© 2004-2018 中国地质图书馆版权所有 京ICP备05064691号 京公网安备11010802017129号 地址:北京市海淀区学院路29号 邮编:100083 电话:办公室:(+86 10)66554848;文献借阅、咨询服务、科技查新:66554700 |