Method for enhancing safety of Oracle database server by utilizing progress infusion and TNS protocol analysis

Abstract

The invention discloses a method for enhancing the safety of an Oracle database server from the outside by utilizing progress infusion and TNS protocol analysis, comprising the following steps: firstly, TNS protocol analysis and safety characteristic enhancing functional modules are compiled into DLL; a create remote thread and a load library are used for mapping the DLL to a remote Oracle servo progress; and when the Oracle servo progress receives the communication information of an Oracle client terminal and a server terminal, the TNS protocol analysis module and the safety characteristic enhancing functional module begin to work. The invention can support all data access interfaces and has very good versatility; the invention can directly run at the server terminal, can protect attack from a long range and can also protect attack from the local machine; and for a result returned by the database server to the client terminal, the invention only records the successful or unsuccessful operation information of the database server, avoids duplicating a result set and lowers the influence on the performance of the database.

Description

technical field [0001] The invention belongs to the technology of externally enhancing the security of an Oracle database server, in particular to a method for enhancing the security of an Oracle database server by utilizing process injection and TNS protocol analysis. Background technique [0002] Oracle database server is one of the most widely used commercial database servers in the world. The security protection function provided by itself cannot meet the needs of fields with high requirements for information security, such as government confidential departments, public security departments, military departments, etc. Therefore, It is necessary to perform security enhancement on the Oracle database server externally. Traditional security enhancement methods such as figure 1 As shown, the principle is to add an isolation layer between the Oracle client and the Oracle server, that is, the security enhancement system, and all communication messages from the client to the s...

AI Technical Summary

Problems solved by technology

[0007] (2) Performance impact analysis: After receiving the processing results of the database, the two security enhancement methods need to copy the results and return them to the client, so they have a great impact on the performance of the original system

When the amount of data accessed reaches a certain scale, the security enhancement brought by it will be difficult to compensate for its impact on database performance

[0008] (3) Anti-attack ability: The anti-attack ability of the data access interface proxy method is poor, and it cannot prevent attacks from client software such as SQL*PLUS and DBA Studio.

The third method does not require additional DLL files compared to the other two methods, so it is more flexible but also more complicated and dangerous

Once there is a bug in the injected code, the remote thread will crash immediately

Images