BS ISO/IEC 9579-2000 信息技术.对带有安全增强的SQL的远程数据库访问
作者:标准资料网 时间:2024-05-14 19:49:33 浏览:8101
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:Informationtechnology-RemotedatabaseaccessforSQLwithsecurityenhancement
【原文标准名称】:信息技术.对带有安全增强的SQL的远程数据库访问
【标准号】:BSISO/IEC9579-2000
【标准状态】:现行
【国别】:英国
【发布日期】:2001-08-15
【实施或试行日期】:2001-08-15
【发布单位】:英国标准学会(GB-BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:式样;开放系统互连;信息交流;EDP;数据处理;电子数据处理;数据基础;结构化询问语言;数据传输;通路;网络互连;信息交换;记录;信息处理;信息技术;遥控访问;实际数据库
【英文主题词】:Access;Databases;Dataprocessing;Datatransmission;EDP;Factualdatabases;Informationexchange;Informationinterchange;Informationprocessing;Informationtechnology;Networkinterconnection;OSI;Patterns;Records;Remoteaccess;SQL;StructuredQueryLanguage
【摘要】:ThisInternationalStandard,RemoteDatabaseAccessforSQL(RDA),definesamodelfortheremoteinteractionofanSQL-clientandoneormoreSQL-serversthroughcommunicationmedia,anddefinestheencodingofmessages,thesemanticsofmessagesandassociatedfacilitiesformediatingtheinteractionbetweenoneSQL-clientandoneSQL-server.ThisInternationalStandardalsodefinesamappingoftheRDAProtocoltothespecificcommunicationinfrastructuresTCP/IPandTransportLayerSecurity(TLS).ThisInternationalStandardreliesuponthefacilitiesprovidedbyISO/IEC9075(SQL)andISO/IEC9075-3(SQL/CLI).ThisInternationalStandardalso:identifiespotentialsecurityvulnerabilitiesinremotedatabaseaccessusingRDA,-definesRDAfacilitieswhichprotectagainstthepotentialvulnerabilities.Normativeannexesprovide:-aConformanceProforma,anoptionallanguageindependentApplicationProgrammingInterfacedefinedinthenotationalconventionsofISO/IEC9075-3(SQL/CLI)forinvokingRDAOperations,-anoptionalmappingofISO/IEC9075-3(SQL/CLI)functionstoRDAOperations,definitionsofoptionalSQL-servers,theRDALocationServerandtheRDASupportServer,tofacilitateinteroperationanddatadistributioninaheterogeneousenvironment,-asetofsecurityprofilesthatidentifywhichRDAfacilitiesandothersecurityfacilitiesarerequiredfordifferentlevelsofprotectionagainstpotentialvulnerabilities.Informativeannexesprovide:ananalysisofsecurityservicerequirements,-anASN.1specificationfortheRDAProtocol,-anASN.1specificationfortheencodingofmultiplerows.ThisInternationalStandarddoesnotconstrain:-conformingRDA-clientenvironmentstobeimplementedusinganyparticularprocessordecomposition,-conformingRDA-serverenvironmentstobeimplementedusinganyparticularprocessordecomposition.ThisInternationalStandardreferstobutdoesnotdefine:-protocolsandsecuritymechanismsforcommunicationconfidentiality,integrityandauthenticationofcommunicatingpeers,digitalsignatureandauthenticationmechanismssupportedbyprotocolelementsofRDA.ThisInternationalStandarddoesnotdefine:-algorithmsforquerydecompositionorforthecombiningofresultsinadistributeddatabaseenvironment,-mechanismsforrecoveryintheeventthattransactionco-ordinationfails,-mechanismsforstorageintegrityandconfidentialityusingcryptography,-mechanismstocounterDenialofServiceattacks.
【中国标准分类号】:M11
【国际标准分类号】:35_100_70;35_240_30
【页数】:130P.;A4
【正文语种】:英语
【原文标准名称】:信息技术.对带有安全增强的SQL的远程数据库访问
【标准号】:BSISO/IEC9579-2000
【标准状态】:现行
【国别】:英国
【发布日期】:2001-08-15
【实施或试行日期】:2001-08-15
【发布单位】:英国标准学会(GB-BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:式样;开放系统互连;信息交流;EDP;数据处理;电子数据处理;数据基础;结构化询问语言;数据传输;通路;网络互连;信息交换;记录;信息处理;信息技术;遥控访问;实际数据库
【英文主题词】:Access;Databases;Dataprocessing;Datatransmission;EDP;Factualdatabases;Informationexchange;Informationinterchange;Informationprocessing;Informationtechnology;Networkinterconnection;OSI;Patterns;Records;Remoteaccess;SQL;StructuredQueryLanguage
【摘要】:ThisInternationalStandard,RemoteDatabaseAccessforSQL(RDA),definesamodelfortheremoteinteractionofanSQL-clientandoneormoreSQL-serversthroughcommunicationmedia,anddefinestheencodingofmessages,thesemanticsofmessagesandassociatedfacilitiesformediatingtheinteractionbetweenoneSQL-clientandoneSQL-server.ThisInternationalStandardalsodefinesamappingoftheRDAProtocoltothespecificcommunicationinfrastructuresTCP/IPandTransportLayerSecurity(TLS).ThisInternationalStandardreliesuponthefacilitiesprovidedbyISO/IEC9075(SQL)andISO/IEC9075-3(SQL/CLI).ThisInternationalStandardalso:identifiespotentialsecurityvulnerabilitiesinremotedatabaseaccessusingRDA,-definesRDAfacilitieswhichprotectagainstthepotentialvulnerabilities.Normativeannexesprovide:-aConformanceProforma,anoptionallanguageindependentApplicationProgrammingInterfacedefinedinthenotationalconventionsofISO/IEC9075-3(SQL/CLI)forinvokingRDAOperations,-anoptionalmappingofISO/IEC9075-3(SQL/CLI)functionstoRDAOperations,definitionsofoptionalSQL-servers,theRDALocationServerandtheRDASupportServer,tofacilitateinteroperationanddatadistributioninaheterogeneousenvironment,-asetofsecurityprofilesthatidentifywhichRDAfacilitiesandothersecurityfacilitiesarerequiredfordifferentlevelsofprotectionagainstpotentialvulnerabilities.Informativeannexesprovide:ananalysisofsecurityservicerequirements,-anASN.1specificationfortheRDAProtocol,-anASN.1specificationfortheencodingofmultiplerows.ThisInternationalStandarddoesnotconstrain:-conformingRDA-clientenvironmentstobeimplementedusinganyparticularprocessordecomposition,-conformingRDA-serverenvironmentstobeimplementedusinganyparticularprocessordecomposition.ThisInternationalStandardreferstobutdoesnotdefine:-protocolsandsecuritymechanismsforcommunicationconfidentiality,integrityandauthenticationofcommunicatingpeers,digitalsignatureandauthenticationmechanismssupportedbyprotocolelementsofRDA.ThisInternationalStandarddoesnotdefine:-algorithmsforquerydecompositionorforthecombiningofresultsinadistributeddatabaseenvironment,-mechanismsforrecoveryintheeventthattransactionco-ordinationfails,-mechanismsforstorageintegrityandconfidentialityusingcryptography,-mechanismstocounterDenialofServiceattacks.
【中国标准分类号】:M11
【国际标准分类号】:35_100_70;35_240_30
【页数】:130P.;A4
【正文语种】:英语
下载地址: 点击此处下载