关键词: 信息系统 数据库 数据安全 程序设计 多方位控制

Abstract:

The security of information systems needs to be guaranteed from multiple aspects. However, at present, people consider them separately. For example, s ome people focus on the database, such as data security, the access control and data consistency of the database itself; while others concentrate on the program structures, design methods and other aspects to satisfy the needs of system security. Actually, the data used by users is not acquired directly  from the database, but from the visual interface for users. From the visual interface to the data in the database, there may be several program-control  steps, but how to associate the database with the program design to assure the system security is rare. This paper discusses how to control the databas e from multiple aspects through programming, and then guarantee the security of the data used in information systems.

Key words: information system, database, data seeurity, program design, multiple-aspect control