DB A DB access control system based on banned-word by using the parser for enhancing security of personal information

摘要

The present invention relates to a DB access control system based on prohibited words using a parser, for a DB access request, which analyzes a requested query by using a parser and determines whether the DB access request is permitted by accurately extracting the intent of the analyzed query. The DB access control system based on prohibited words using a parser comprises: a relay module for extracting a query statement from a packet transmitted from a user terminal and relaying a statement input between the user terminal and a DB server or a result of the server; a column extractor for receiving the query statement from the relay module and extracting a column name; and an abnormality determination unit for storing an authorization list composed of the column name and determining whether or not the query statement is accepted according to whether or not the extracted column name is present in the authorization list, wherein an instruction to transmit or block the query statement is transmitted to the relay module depending on whether the abnormality determination unit authorizes the query statement or not. According to the DB server access control system, by analyzing a data request of a DB in a query unit, it is possible to analyze the intention of the data request accurately and to strengthen the security by controlling the data based on the analysis result.