Treffer: Audit Design Based on Protocol Analysis of ORACLE Database

As companies rely more and more on information systems, security of database becomes increasingly important. The database has a security mechanism to ensure completeness and correctness, however attackers or unauthorized users always want to operate database through non-formal ways. Therefore, it’s important to record user’s operations worked on the database.This paper puts forward a new way to record user’s actions in the audit system, which accesses to the network through the bypass monitoring method, this way audits database by setting the policy. The advantages are that the audit system does not affect the communication between the client and the database server, and database problem does not affect the database audit system. In this paper, Oracle database communication protocol TNS will be example to describe the audit system. This paper also introduces TNS in the protocol framework and shows its level position, then designs a framework for the audit system according to the network model.