Siv tus password txoj cai. Lawv txoj kev siv nyob ntawm seb koj qhov architecture tsim li cas. Txawm li cas los xij, ib lo lus zais hauv cov ntaub ntawv teeb tsa ntawm daim ntawv thov web uas txuas rau DBMS tsis txaus rau kev tiv thaiv. Muaj ntau cov cuab yeej DBMS uas tso cai rau koj los tswj tus neeg siv thiab tus password kom hloov kho.
Koj tuaj yeem nyeem ntxiv txog cov neeg siv kev ntsuas kev ua haujlwm no, koj tuaj yeem paub txog MS SQL Vulnerability Assessmen S, SѓS,.
Txhim kho cov ntsiab lus ntawm kev sib kho nrog cov ntaub ntawv tsim nyog. Yog tias qhov kev sib tham tsis meej, koj tsis nkag siab tias leej twg ua haujlwm hauv DBMS hauv nws lub moj khaum, koj tuaj yeem, nyob rau hauv lub moj khaum ntawm kev ua haujlwm, ntxiv cov ntaub ntawv hais txog leej twg ua dab tsi thiab vim li cas. Cov ntaub ntawv no tuaj yeem pom hauv kev tshuaj xyuas.
scaling factor: 1
query mode: simple
number of clients: 10
number of threads: 1
number of transactions per client: 5000
number of transactions actually processed: 50000/50000
"Cov lus qhia yooj yim nkag tau tuaj yeem muab los ntawm qhov chaw nkag tus qauv nrog log_statement = tag nrho.
Qhov no siv tau rau kev saib xyuas thiab lwm yam kev siv, tab sis tsis muab cov ntsiab lus nthuav dav feem ntau xav tau rau kev tshuaj xyuas.
Nws tsis txaus kom muaj ib daim ntawv teev npe ntawm tag nrho cov haujlwm ua haujlwm ntawm cov ntaub ntawv.
Nws kuj tseem tuaj yeem nrhiav tau cov nqe lus tshwj xeeb uas txaus siab rau tus kws tshuaj xyuas.
Standard logging qhia tau hais tias tus neeg siv tau thov dab tsi, thaum pgAudit tsom rau cov ntsiab lus ntawm qhov tshwm sim thaum lub database tau ua tiav cov lus nug.
Piv txwv li, tus kws tshuaj ntsuam xyuas yuav xav paub tseeb tias ib lub rooj tshwj xeeb tau tsim nyob rau hauv lub qhov rais saib xyuas cov ntaub ntawv.
Qhov no yuav zoo li ib txoj haujlwm yooj yim nrog kev tshawb xyuas yooj yim thiab grep, tab sis yuav ua li cas yog tias koj tau nthuav tawm nrog qee yam zoo li no (xav tsis meej pem) piv txwv:
Qhov no yuav cuam tshuam li cas rau kev ua haujlwm ntawm DBMS?
Cia peb khiav cov kev ntsuam xyuas nrog kev tshawb xyuas tag nrho thiab pom dab tsi tshwm sim rau PostgreSQL kev ua tau zoo. Cia peb qhib qhov siab tshaj plaws database logging rau tag nrho cov tsis.
Peb hloov yuav luag tsis muaj dab tsi hauv cov ntaub ntawv teeb tsa, qhov tseem ceeb tshaj plaws yog qhib hom kev debug5 kom tau txais cov ntaub ntawv siab tshaj plaws.
id | decryption | decryption
———————————————————— +
1 | x31 | x31 ua
2 | x32 | x32 ua
3 | x 33 | x33 ua
...
999 | x393939 | x393939 ua
1000 | x 31303030 | x31303030 ua
(1000 kab)
Sijhawm: 50,203ms
Cov qhabnias xeem:
Tsis muaj encryption Pgcrypto (decrypt)
Qauv 1000 kab
1,386 ms
50,203 ms
CPU
15%
35%
RAM
+ 5%
Encryption muaj kev cuam tshuam loj rau kev ua haujlwm. Nws tuaj yeem pom tau tias lub sijhawm tau nce ntxiv, txij li kev ua haujlwm decryption ntawm cov ntaub ntawv encrypted (thiab decryption feem ntau tseem qhwv hauv koj lub logic) xav tau cov peev txheej tseem ceeb. Uas yog, lub tswv yim ntawm encrypting tag nrho cov kab uas muaj ib co ntaub ntawv yog fraught nrog ib tug txo nyob rau hauv kev ua tau zoo.
Txawm li cas los xij, encryption tsis yog ib lub mos txwv nyiaj uas daws txhua yam teeb meem. Cov ntaub ntawv decrypted thiab tus yuam sij decryption thaum lub sij hawm tus txheej txheem ntawm decrypting thiab xa cov ntaub ntawv nyob rau hauv lub server. Yog li ntawd, cov yuam sij tuaj yeem cuam tshuam los ntawm ib tus neeg uas muaj kev nkag mus rau hauv database server, xws li tus thawj tswj hwm.
Thaum muaj ib qho tseem ceeb rau tag nrho kem rau txhua tus neeg siv (txawm tias tsis yog rau txhua tus, tab sis rau cov neeg siv khoom siv tsawg), qhov no tsis yog ib txwm zoo thiab raug. Tias yog vim li cas lawv pib ua qhov kawg-rau-kawg encryption, hauv DBMS lawv pib xav txog kev xaiv rau encrypting cov ntaub ntawv ntawm tus neeg siv khoom thiab cov neeg rau zaub mov sab, thiab cov tib qhov tseem ceeb-vault khaws cia tau tshwm sim - cais cov khoom uas muab kev tswj hwm ntawm DBMS. sab.
Lub rooj nyob deb ntawm kev ua tiav, tab sis qhov xwm txheej yog qhov no: hauv cov khoom lag luam, cov teeb meem kev nyab xeeb tau raug daws tau ntev, nyob rau hauv qhov chaw qhib, raws li txoj cai, qee yam add-ons yog siv rau kev ruaj ntseg, ntau lub zog ploj lawm. , tej zaum koj yuav tsum tau ntxiv ib yam dab tsi. Piv txwv li, tus password txoj cai - PostgreSQL muaj ntau yam sib txawv (1, 2, 3, 4, 5), uas siv cov cai password, tab sis, hauv kuv lub tswv yim, tsis muaj leej twg them tag nrho cov kev xav tau ntawm cov tuam txhab lag luam hauv tsev.
Yuav ua li cas yog tias koj tsis muaj yam koj xav tau nyob qhov twg? Piv txwv li, koj xav siv DBMS tshwj xeeb uas tsis muaj cov haujlwm uas tus neeg siv khoom xav tau.
Tom qab ntawd koj tuaj yeem siv cov kev daws teeb meem thib peb uas ua haujlwm nrog DBMSs sib txawv, piv txwv li, Crypto DB lossis Garda DB. Yog tias peb tab tom tham txog kev daws teeb meem los ntawm ntu hauv tsev, ces lawv paub txog GOSTs zoo dua hauv qhov qhib.
Qhov kev xaiv thib ob yog sau qhov koj xav tau koj tus kheej, siv cov ntaub ntawv nkag mus thiab encryption hauv daim ntawv thov ntawm qib txheej txheem. Muaj tseeb, nws yuav nyuaj dua nrog GOST. Tab sis feem ntau, koj tuaj yeem nkaum cov ntaub ntawv raws li xav tau, muab tso rau hauv DBMS, tom qab ntawd muab nws thiab decrypt nws raws li xav tau, txoj cai ntawm daim ntawv thov. Nyob rau tib lub sijhawm, xav tam sim ntawd seb koj yuav tiv thaiv cov algorithms li cas hauv daim ntawv thov. Hauv peb lub tswv yim, qhov no yuav tsum ua tiav ntawm qib DBMS, vim tias nws yuav ua haujlwm sai dua.