CN103488797A - MYSQL database-based SQL information acquisition and audit system - Google Patents
MYSQL database-based SQL information acquisition and audit system Download PDFInfo
- Publication number
- CN103488797A CN103488797A CN201310479392.XA CN201310479392A CN103488797A CN 103488797 A CN103488797 A CN 103488797A CN 201310479392 A CN201310479392 A CN 201310479392A CN 103488797 A CN103488797 A CN 103488797A
- Authority
- CN
- China
- Prior art keywords
- sql
- mysql
- submodule
- database
- communication packet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000012550 audit Methods 0.000 title abstract 2
- 230000006854 communication Effects 0.000 claims abstract description 55
- 238000004891 communication Methods 0.000 claims abstract description 54
- 230000004044 response Effects 0.000 claims abstract description 8
- 230000002159 abnormal effect Effects 0.000 claims description 10
- 238000000034 method Methods 0.000 claims description 7
- 230000008569 process Effects 0.000 claims description 5
- 239000004615 ingredient Substances 0.000 claims description 3
- 230000000153 supplemental effect Effects 0.000 claims description 3
- 238000000354 decomposition reaction Methods 0.000 abstract description 3
- 230000004075 alteration Effects 0.000 abstract 1
- 230000006870 function Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 3
- 230000003542 behavioural effect Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000015572 biosynthetic process Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
- G06F11/34—Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation ; Recording or statistical evaluation of user activity, e.g. usability assessment
- G06F11/3409—Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation ; Recording or statistical evaluation of user activity, e.g. usability assessment for performance assessment
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/21—Design, administration or maintenance of databases
Landscapes
- Engineering & Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Quality & Reliability (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses an SQL information acquisition and audit system based on a MYSQL database, which comprises the following steps: the MYSQL communication message analysis module analyzes the SQL sentences of the communication messages, the parameters carried by the SQL sentences and the execution results of the SQL sentences completely by analyzing the communication protocol between the application system client of the MYSQL database and the MYSQL database, and provides data sources for other modules; the SQL sentence syntax analysis module is used for carrying out effective structural decomposition on the SQL sentences to form an SQL operation log library; and the MYSQL communication error code module is used for establishing a MYSQL database error code library, and analyzing the running condition of the application system based on the MYSQL database by combining the database access request and the response result of the request with the MYSQL database error code library. The invention does not need to carry out any configuration change and alteration on the application system, has no influence on the normal operation of the application system, and can provide powerful support for users and application system providers to know the system operation state in time.
Description
Technical field
The present invention relates to a kind of information acquisition auditing system, specifically relate to a kind of SQL information acquisition auditing system based on the MYSQL database.
Background technology
In the application system based on TCP network, use MYSQL database server, because client computer is more, visit capacity and volume of transmitted data are all larger.As the user, be difficult in system level, the access service condition of MYSQL database comprehensively be analyzed, thus the operation conditions of understanding application system.Like this, the communication process between client computer and database server, be almost a black box.When application system abnormal situation, the user is the history run state of this system not also.
Some traditional methods are to revise some configurations of MYSQL database server main frame, make database server initiatively record some access logs, in order to ex-post analysis.But these configuration changes of MYSQL database, tend to significantly have influence on the operational efficiency of MYSQL database server, thereby affect the performance of whole application system.At present, some based on network acquisition techniques have been arranged, and as sniffer, this is for passing through network mode, network communication situation in the observation application system between database application client and MYSQL database server, provide basic technical support thereby carry out further depth analysis.
Summary of the invention
Technical matters to be solved by this invention is, overcome the shortcoming of prior art, provide a kind of the needs to carry out any configuration modifications and changes to the application system, on the application system normal operation without any impact, can comprehensive understanding be arranged to SQL behavior in the application system, understand in time the SQL information acquisition auditing system based on the MYSQL database that system running state provides strong support to user, application system provider.
In order to solve above technical matters, the invention provides a kind of SQL information acquisition auditing system based on the MYSQL database, comprise MYSQL communication packet analysis module, SQL statement syntax parsing module and MYSQL miscommunication code module.
MYSQL communication packet analysis module is by being analyzed communication packet, the execution result of the SQL statement of acquisition communication packet, SQL statement parameter, SQL statement, it comprises following submodule: basic communication packet structure analysis submodule, in order to the basic communication packet structure to comprising in communication packet, analyzed; Login login protocol structure analysis submodule, analyzed in order to the Login login protocol structure to comprising in communication packet; SQL request message structure analysis submodule, analyzed in order to the SQL request message structure to comprising in communication packet; RPC far call message structure is analyzed submodule, in order to the RPC far call message structure to comprising in communication packet, is analyzed; SQL carries out returned packet structure analysis submodule, carries out the returned packet structure in order to the SQL to comprising in communication packet and is analyzed; The SQL argument structure is analyzed submodule, in order to the SQL argument structure to comprising in communication packet, is analyzed.
SQL statement syntax parsing module comprises: the SQL operand is analyzed submodule, in order to operand is separated from SQL statement; SQL Operation Log storehouse, analyze each ingredient of the SQL statement that submodule gets after to the SQL statement syntax parsing in order to preserve SQL statement, SQL statement parameter, SQL statement execution result and SQL operand that MYSQL communication packet analysis module obtains; SQL operation statistics submodule, in order to be added up the SQL Operation Log; The SQL execution result is analyzed submodule; In order at the SQL execution result, to analyze submodule when SQL operates execute exception, abnormal conditions are analyzed separately and preserved.
MYSQL miscommunication code module is a MYSQL Database error code library, by the response results by database access request and request and MYSQL Database error code library, combine, analyze the operation conditions of certain application system based on the MYSQL database, comprise mistake in the response results of a SQL request of access, at SQL, carry out in the returned packet structure and get error number, according to error number, in conjunction with the error code storehouse, certain mistake of having known this application system emerged in operation.
The technical scheme that the present invention further limits is: in aforementioned SQL statement syntax parsing module, SQL operation statistics submodule is divided into following classification by SQL statement: database definition generic operation, data manipulation generic operation, database control generic operation and affairs are controlled generic operation, and statistic of classification.The particular content of statistic of classification is:
| Class of operation | Quantity |
| The database definition generic operation | 12 |
| The data manipulation generic operation | 20 |
| Database is controlled generic operation | 30 |
| Affairs are controlled generic operation | 40 |
Further, in aforementioned MYSQL communication packet analysis module, basic communication packet structure analysis submodule comprises the analysis of following content:
| 1 |
1 byte | 2 bytes | 4 bytes |
| Type of database | The end packet sign | Data package size | Packet pointer |
In aforementioned MYSQL communication packet analysis module, RPC far call message structure is analyzed in submodule, and the length of RPC title is specially with corresponding RPC title:
| The length of RPC title | Corresponding RPC title |
| 0x1 | sp_cursor |
| 0x2 | sp_cursoropen |
| 0x3 | sp_cursorprepare |
| 0x4 | sp_cursorexecute |
| 0x5 | sp_cursorprepexec |
| 0x6 | sp_cursorunprepare |
| 0x7 | sp_cursorfetch |
| 0x8 | sp_cursoroption |
| 0x9 | sp_cursorclose |
| 0xA | sp_executesql |
| 0xB | sp_prepare |
| 0xC | sp_execute |
| 0xD | sp_prepexec |
| 0xE | sp_prepexecrpc |
| 0xF | sp_unprepare |
In aforementioned MYSQL communication packet analysis module, SQL carries out returned packet structure analysis submodule concrete structure analysis agreement and is:
| Sign place value (sexadecimal) | Sign place value (decimal system) | The zone bit title |
| 0x21 | 33 | Language |
| 0x71 | 113 | Logout |
| 0x79 | 121 | Return |
| 0x7C | 124 | Process |
| 0x81 | 129 | Result |
| 0xA0 | 160 | Column |
| 0xA1 | 161 | Column |
| 0xA4 | 164 | Table |
| 0xA5 | 165 | Column |
| 0xA7 | 167 | Compute |
| 0xA8 | 168 | Column |
| 0xA9 | 169 | Order |
| 0xAA | 170 | Error |
| 0xAB | 171 | Non-error |
| 0xAC | 172 | Output |
In aforementioned MYSQL communication packet analysis module, the SQL argument structure is analyzed submodule and is comprised the basic structure analysis of parameter and structure analysis two parts of parameter type, and the concrete analysis content is:
The basic structure of parameter:
| Parameter type | Supplemental characteristic |
The structure of parameter type:
| 1 byte | Character string [n] | 1 byte | 4 bytes |
| Length | Parameter name | Sign | Type of service |
The invention has the beneficial effects as follows: (1) from the computer network aspect, SQL operation the application system based on the MYSQL database is analyzed, is not needed the application system is carried out to any configuration modifications and changes, on the normal operation of application system without any impact; (2) the communication packet between MYSQL database application client and service end has been carried out to comprehensive parsing, decomposition, intactly realized the analysis to SQL statement, thereby SQL behavior in the application system has been had to comprehensive understanding; (3) by setting up the error code storehouse of MYSQL database, can understand in time in the application system operational process, the abnormal conditions that SQL operation occurs, give the user, application system provider understands system running state in time that strong support is provided.
The accompanying drawing explanation
Fig. 1 is deployment diagram of the present invention.
Fig. 2 is system architecture diagram of the present invention.
Embodiment
A kind of SQL information acquisition auditing system based on the MYSQL database that the present embodiment provides, concrete deployment diagram and system framework composition are as depicted in figs. 1 and 2.This system comprises MYSQL communication packet analysis module, SQL statement syntax parsing module and MYSQL miscommunication code module.MYSQL communication packet analysis module comprises that basic communication packet structure analysis submodule, Login login protocol structure analysis submodule, SQL request message structure analysis submodule, RPC far call message structure are analyzed submodule, SQL carries out returned packet structure analysis submodule, SQL argument structure analysis submodule, respectively the basic communication packet structure, Login login protocol structure, SQL request message structure, RPC far call message structure, SQL execution returned packet structure, the SQL argument structure that in communication packet, comprise is analyzed; Thereby the execution result of the SQL statement of acquisition communication packet, SQL statement parameter, SQL statement.SQL statement syntax parsing module comprises SQL operand analysis submodule, SQL Operation Log storehouse, SQL operation statistics submodule, SQL execution result analysis submodule; The SQL operand is analyzed submodule operand is separated from SQL statement; SQL Operation Log storehouse is used for preserving each ingredient that SQL statement, SQL statement parameter, SQL statement execution result and SQL operand that MYSQL communication packet analysis module obtains are analyzed the SQL statement that submodule gets after to the SQL statement syntax parsing; The SQL execution result is analyzed submodule when SQL operation execute exception, and abnormal conditions are analyzed separately and preserved.MYSQL miscommunication code module is a MYSQL Database error code library, by the response results by database access request and request and MYSQL Database error code library, combine, analyze the operation conditions of certain application system based on the MYSQL database, comprise mistake in the response results of a SQL request of access, can carry out in the returned packet structure and get error number at SQL, according to error number, in conjunction with the error code storehouse, certain mistake of can having known this application system emerged in operation.
Particularly, MYSQL communication packet analysis module, in the application system based on the MYSQL database, what the communications protocol between application system client and MYSQL database adopted is the proprietary protocol of ORACLE company.The major function of this module is by this agreement of effective analysis, by the SQL statement of communication packet, SQL statement with the complete analysis of the execution result of parameter, SQL statement out, for other modules provide Data Source.Each submodule of this module comprises following concrete protocol analyzing function:
Basic communication packet structure analysis:
| 1 |
1 byte | 2 bytes | 4 bytes |
| Type of database | The end packet sign | Data package size | Packet pointer |
The structure analysis of Login login protocol:
The structure analysis of SQL request message:
RPC far call message structure is analyzed:
Wherein:
| The length of RPC title | Corresponding RPC title |
| 0x1 | sp_cursor |
| 0x2 | sp_cursoropen |
| 0x3 | sp_cursorprepare |
| 0x4 | sp_cursorexecute |
| 0x5 | sp_cursorprepexec |
| 0x6 | sp_cursorunprepare |
| 0x7 | sp_cursorfetch |
| 0x8 | sp_cursoroption |
| 0x9 | sp_cursorclose |
| 0xA | sp_executesql |
| 0xB | sp_prepare |
| 0xC | sp_execute |
| 0xD | sp_prepexec |
| 0xE | sp_prepexecrpc |
| 0xF | sp_unprepare |
SQL carries out the returned packet structure analysis:
| Sign place value (sexadecimal) | Sign place value (decimal system) | The zone bit title |
| 0x21 | 33 | Language |
| 0x71 | 113 | Logout |
| 0x79 | 121 | Return |
| 0x7C | 124 | Process |
| 0x81 | 129 | Result |
| 0xA0 | 160 | Column |
| 0xA1 | 161 | Column |
| 0xA4 | 164 | Table |
| 0xA5 | 165 | Column |
| 0xA7 | 167 | Compute |
| 0xA8 | 168 | Column |
| 0xA9 | 169 | Order |
| 0xAA | 170 | Error |
| 0xAB | 171 | Non-error |
| 0xAC | 172 | Output |
The SQL argument structure is analyzed, and comprises the basic structure analysis of parameter and structure analysis two parts of parameter type, and the concrete analysis content is:
The basic structure of parameter:
| Parameter type | Supplemental characteristic |
The structure of parameter type:
| 1 byte | Character string [n] | 1 byte | 4 bytes |
| Length | Parameter name | Sign | Type of service |
Particularly, in SQL statement syntax parsing module, the function that the SQL operand is analyzed submodule is that SQL statement is carried out to effective STRUCTURE DECOMPOSITION, SQL statement is decomposed into to " operation ", " object of operation ", " parameter of operation ", " execution result ".In this module, emphasis is added up the data with Types Below, form in " SQL Operation Log storehouse ".
Wherein SQL operation statistics submodule is divided into following classification by SQL, and statistic of classification: the content of typical statistic of classification as:
| Class of operation | Quantity |
| The database definition generic operation | 12 |
| The data manipulation generic operation | 20 |
| Database is controlled generic operation | 30 |
| Affairs are controlled generic operation | 40 |
The database definition generic operation, as CREATE, ALTER, DROP, TRUNCATE, COMMENT, RENAME etc.;
The data manipulation generic operation, as SELECT, INSERT, UPDATE, DELETE, MERGE, CALL, EXPLAIN PLAN, LOCK TABLE etc.;
Database is controlled generic operation, as GRANT, REVOKE;
Affairs are controlled generic operation, as SAVEPOINT, ROLLBACK, SET TRANSACTION etc.;
The SQL operand is analyzed:
Most of database SQL operations are operated the object in database, and this module, by operand, is separated from SQL as database table, data sheet field etc., stores classifiedly in " SQL Operation Log storehouse ".
The function that the SQL execution result is analyzed submodule is: in the application system operational process, due to a variety of causes, as the defect of application system, network environment abnormal etc., all may to cause that the SQL operation is carried out abnormal.This module is analyzed these abnormal conditions separately and preserves, in order to be combined with the error code storehouse, for the customer analysis abnormal conditions are offered help.
Specifically, the function of MYSQL error code analysis module is to have set up a MYSQL Database error code library, by the response results by database access request and request and error code storehouse, combine, can effectively analyze the application system operation conditions based on the MYSQL database, understand in time the abnormal conditions in application system.
Error code storehouse summary:
| error number | the mistake summary | error description |
| 1000 | (ER_HASHCHK) | hASH code check mistake |
| 1001 | (ER_NISAMCHK) | the ISAM check errors |
| 1002 | (ER_NO) | nO |
| 1003 | (ER_YES) | yES |
| 1004 | (ER_CANT_CREATE_FILE) | the failure of establishment file |
| 1005 | (ER_CANT_CREATE_TABLE) | the failure of establishment tables of data |
| 1006 | (ER_CANT_CREATE_DB) | the creation database failure |
| 1007 | (ER_DB_CREATE_EXISTS) | because database exists, the creation database failure. |
| 1008 | (ER_DB_DROP_EXISTS) | because database does not exist, the unloading failed database. |
| 1009 | (ER_DB_DROP_DELETE) | the unloading failed database. |
| 1010 | (ER_DB_DROP_RMDIR) | the failure of unloading data base directory. |
Especially, use analysis and the auditing system the present invention relates in certain IT infrastructure operation management system, a kind of basic deployment way is:
In the communication packet acquisition module of linux system deploy MYSQL database, the modules such as error code storehouse that SQL statement is analyzed correlation module, SQL Operation Log storehouse, MYSQL;
SQL statement is analyzed correlation module and is automatically produced the report of SQL behavioral statistics, SQL exception reporting, and can send to the associated user by lettergram mode;
The user uses the web browser access to be somebody's turn to do " IT infrastructure operation management system ", initiatively checks the contents such as SQL behavioral statistics report.
In addition to the implementation, the present invention can also have other embodiments.All employings are equal to the technical scheme of replacement or equivalent transformation formation, all drop on the protection domain of requirement of the present invention.
Claims (7)
1. the SQL information acquisition auditing system based on the MYSQL database, is characterized in that: comprise MYSQL communication packet analysis module, SQL statement syntax parsing module and MYSQL miscommunication code module;
Described MYSQL communication packet analysis module is by being analyzed communication packet, the execution result of the SQL statement of acquisition communication packet, SQL statement parameter, SQL statement, it comprises following submodule: basic communication packet structure analysis submodule, in order to the basic communication packet structure to comprising in communication packet, analyzed; Login login protocol structure analysis submodule, analyzed in order to the Login login protocol structure to comprising in communication packet; SQL request message structure analysis submodule, analyzed in order to the SQL request message structure to comprising in communication packet; RPC far call message structure is analyzed submodule, in order to the RPC far call message structure to comprising in communication packet, is analyzed; SQL carries out returned packet structure analysis submodule, carries out the returned packet structure in order to the SQL to comprising in communication packet and is analyzed; The SQL argument structure is analyzed submodule, in order to the SQL argument structure to comprising in communication packet, is analyzed;
Described SQL statement syntax parsing module comprises: the SQL operand is analyzed submodule, in order to operand is separated from SQL statement; SQL Operation Log storehouse, analyze each ingredient of the SQL statement that submodule gets after to the SQL statement syntax parsing in order to preserve SQL statement, SQL statement parameter, SQL statement execution result and SQL operand that MYSQL communication packet analysis module obtains; SQL operation statistics submodule, in order to be added up the SQL Operation Log; The SQL execution result is analyzed submodule; In order at the SQL execution result, to analyze submodule when SQL operates execute exception, abnormal conditions are analyzed separately and preserved;
Described MYSQL miscommunication code module is a MYSQL Database error code library, by the response results by database access request and request and MYSQL Database error code library, combine, analyze the operation conditions of certain application system based on the MYSQL database, comprise mistake in the response results of a SQL request of access, at SQL, carry out in the returned packet structure and get error number, according to error number, in conjunction with the error code storehouse, certain mistake of having known this application system emerged in operation.
2. the SQL information acquisition auditing system based on the MYSQL database according to claim 1, it is characterized in that: in SQL statement syntax parsing module, SQL operation statistics submodule is divided into following classification by SQL statement: database definition generic operation, data manipulation generic operation, database control generic operation and affairs are controlled generic operation, and statistic of classification.
3. the SQL information acquisition auditing system based on the MYSQL database according to claim 2, it is characterized in that: in SQL statement syntax parsing module, SQL operation statistics submodule by the particular content of SQL statement statistic of classification is:
。
4. according to arbitrary described SQL information acquisition auditing system based on the MYSQL database in claims 1 to 3, it is characterized in that: in MYSQL communication packet analysis module, basic communication packet structure analysis submodule comprises the analysis of following content:
。
5. according to arbitrary described SQL information acquisition auditing system based on the MYSQL database in claims 1 to 3, it is characterized in that: in MYSQL communication packet analysis module, RPC far call message structure is analyzed in submodule, and the length of RPC title is specially with corresponding RPC title:
。
6. according to arbitrary described SQL information acquisition auditing system based on the MYSQL database in claims 1 to 3, it is characterized in that: in MYSQL communication packet analysis module, SQL carries out returned packet structure analysis submodule concrete structure analysis agreement and is:
。
7. according to arbitrary described SQL information acquisition auditing system based on the MYSQL database in claims 1 to 3, it is characterized in that: in MYSQL communication packet analysis module, the SQL argument structure is analyzed submodule and is comprised the basic structure analysis of parameter and structure analysis two parts of parameter type, and the concrete analysis content is:
The basic structure of parameter:
The structure of parameter type:
。
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310479392.XA CN103488797A (en) | 2013-10-14 | 2013-10-14 | MYSQL database-based SQL information acquisition and audit system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310479392.XA CN103488797A (en) | 2013-10-14 | 2013-10-14 | MYSQL database-based SQL information acquisition and audit system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103488797A true CN103488797A (en) | 2014-01-01 |
Family
ID=49829023
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310479392.XA Pending CN103488797A (en) | 2013-10-14 | 2013-10-14 | MYSQL database-based SQL information acquisition and audit system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103488797A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106980637A (en) * | 2016-09-28 | 2017-07-25 | 平安科技(深圳)有限公司 | SQL checking methods and device |
| CN107463842A (en) * | 2017-08-23 | 2017-12-12 | 杭州安恒信息技术有限公司 | SQL injection audit or means of defence and device based on database protocol |
| CN107480063A (en) * | 2017-08-10 | 2017-12-15 | 上海携程国际旅行社有限公司 | Method and system, electronic equipment, the storage medium of dynamic scan SQL sentences |
| CN111651758A (en) * | 2020-06-08 | 2020-09-11 | 成都安恒信息技术有限公司 | Method for auditing result set of relational database of operation and maintenance auditing system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070162421A1 (en) * | 2006-01-12 | 2007-07-12 | Sybase, Inc. | Real-Time Messaging System for Bridging RDBMSs and Message Buses |
| CN101788992A (en) * | 2009-05-06 | 2010-07-28 | 厦门东南融通系统工程有限公司 | Method and system for converting query sentence of database |
| CN102254029A (en) * | 2011-07-29 | 2011-11-23 | 株洲南车时代电气股份有限公司 | View-based data access system and method |
| CN102609541A (en) * | 2012-02-21 | 2012-07-25 | 德讯科技股份有限公司 | SQL information acquisition auditing system based on MSSQL database |
-
2013
- 2013-10-14 CN CN201310479392.XA patent/CN103488797A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070162421A1 (en) * | 2006-01-12 | 2007-07-12 | Sybase, Inc. | Real-Time Messaging System for Bridging RDBMSs and Message Buses |
| CN101788992A (en) * | 2009-05-06 | 2010-07-28 | 厦门东南融通系统工程有限公司 | Method and system for converting query sentence of database |
| CN102254029A (en) * | 2011-07-29 | 2011-11-23 | 株洲南车时代电气股份有限公司 | View-based data access system and method |
| CN102609541A (en) * | 2012-02-21 | 2012-07-25 | 德讯科技股份有限公司 | SQL information acquisition auditing system based on MSSQL database |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106980637A (en) * | 2016-09-28 | 2017-07-25 | 平安科技(深圳)有限公司 | SQL checking methods and device |
| CN106980637B (en) * | 2016-09-28 | 2019-06-07 | 平安科技(深圳)有限公司 | SQL checking method and device |
| CN107480063A (en) * | 2017-08-10 | 2017-12-15 | 上海携程国际旅行社有限公司 | Method and system, electronic equipment, the storage medium of dynamic scan SQL sentences |
| CN107480063B (en) * | 2017-08-10 | 2020-03-10 | 上海携程国际旅行社有限公司 | Method and system for dynamically scanning SQL (structured query language) statement, electronic equipment and storage medium |
| CN107463842A (en) * | 2017-08-23 | 2017-12-12 | 杭州安恒信息技术有限公司 | SQL injection audit or means of defence and device based on database protocol |
| CN107463842B (en) * | 2017-08-23 | 2020-04-07 | 杭州安恒信息技术股份有限公司 | SQL injection auditing or protecting method and device based on database protocol |
| CN111651758A (en) * | 2020-06-08 | 2020-09-11 | 成都安恒信息技术有限公司 | Method for auditing result set of relational database of operation and maintenance auditing system |
| CN111651758B (en) * | 2020-06-08 | 2022-11-22 | 成都安恒信息技术有限公司 | Method for auditing result set of relational database of operation and maintenance auditing system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102609541B (en) | SQL information acquisition auditing system based on MSSQL database | |
| US10587461B2 (en) | Incrementally managing distributed configuration data | |
| US9367597B2 (en) | Automatically managing mapping and transform rules when synchronizing systems | |
| Stock et al. | From facepalm to brain bender: Exploring client-side cross-site scripting | |
| US20190007442A1 (en) | System and user context in enterprise threat detection | |
| CN109670053B (en) | Data object mapping method, device, equipment and computer readable storage medium | |
| Chhajed | Learning ELK stack | |
| US20160350367A1 (en) | Mechanisms For Querying Disparate Data Storage Systems | |
| US10642863B2 (en) | Management of structured, non-structured, and semi-structured data in a multi-tenant environment | |
| US20160350093A1 (en) | Automated Management Of Endpoints | |
| US20170178026A1 (en) | Log normalization in enterprise threat detection | |
| US10402368B2 (en) | Content aggregation for unstructured data | |
| CN116628753A (en) | Method and apparatus for cross-tenant data leakage isolation | |
| EP2976709A1 (en) | Systems and methods for intercepting, processing, and protecting user data through web application pattern detection | |
| EP2616965A1 (en) | Support for a parameterized query/view in complex event processing | |
| CN102902798A (en) | SQL information acquisition and audit method and system for Informix database | |
| US9940464B2 (en) | Static security analysis using a hybrid representation of string values | |
| US20170364386A1 (en) | Event-Driven Multi-Tenant Computer-Management Platform | |
| US9870241B2 (en) | Data transfer guide | |
| CN103488797A (en) | MYSQL database-based SQL information acquisition and audit system | |
| US9363140B2 (en) | System and method for analyzing and reporting gateway configurations and rules | |
| Zhang et al. | Checking enforcement of integrity constraints in database applications based on code patterns | |
| CN110018835B (en) | YANG model configuration data processing method and device, terminal device and storage medium | |
| US11805146B2 (en) | System and method for detection promotion | |
| US9430548B1 (en) | Generating context tree data based on a tailored data model |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20140101 |