摘要 |
PURPOSE: A method for controlling access to a database system without influencing on the database system on the network is provided to make the database system interrupt connection of a client's session not certified from a database administrator by detecting the network session between the database system and the client without influencing on the database system and the client connecting to the database system. CONSTITUTION: An access control process sniffs a network packet between the database system and an Ethernet device(S100). The packet of a TCP/IP(Transmission Control Protocol/Internet Protocol) frame is detected from the sniffed packet(S110). The session connecting to the database system is detected from the packet of the TCP/IP(S120). The session information is detected and validity of the session information is judged by certifying whether the detected session is valid or not(S140). In case of the valid session certification, sniffing is interrupted. In the case of the invalid session certification, a reset signal for the session is transmitted to a client application system and/or the database system(S160).
|