CN111552698A - SQL version control system and method for solving environmental difference - Google Patents
SQL version control system and method for solving environmental difference Download PDFInfo
- Publication number
- CN111552698A CN111552698A CN202010317868.XA CN202010317868A CN111552698A CN 111552698 A CN111552698 A CN 111552698A CN 202010317868 A CN202010317868 A CN 202010317868A CN 111552698 A CN111552698 A CN 111552698A
- Authority
- CN
- China
- Prior art keywords
- sql
- information
- test
- sql information
- production
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/24—Querying
- G06F16/242—Query formulation
- G06F16/2433—Query languages
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/23—Updating
- G06F16/2365—Ensuring data consistency and integrity
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D10/00—Energy efficient computing, e.g. low power processors, power management or thermal management
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Physics & Mathematics (AREA)
- Data Mining & Analysis (AREA)
- Databases & Information Systems (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Computational Linguistics (AREA)
- Mathematical Physics (AREA)
- Debugging And Monitoring (AREA)
- Storage Device Security (AREA)
Abstract
The invention relates to the technical field of database security, in particular to a SQL version control system and a method for solving environmental differences, wherein the system comprises a test subsystem and a production subsystem, wherein the test subsystem is used for testing input SQL information and encrypting the SQL information when the test is passed; the production subsystem is used for judging whether the input SQL information is the encrypted SQL information or not, and if so, executing the SQL information. By adopting the scheme, the technical problems that the SQL information executed under the production environment cannot be tested and is not tampered after the test in the prior art are solved, the conditions of database information leakage, collapse and the like caused by the execution of the input SQL information can be effectively avoided, and the risk of executing the SQL information is effectively controlled.
Description
Technical Field
The invention relates to the technical field of database security, in particular to a SQL version control system and a method for solving environmental differences.
Background
With the development of information technology, the role of the database is becoming more important, and how to protect the security of the information in the database is a problem that people pay attention to. In the working process of the database, operations such as data access, query, update, management and the like need to be performed on the database frequently, and all the operations are realized by executing SQL statements. Generally, the SQL statement needs to be tested before being executed, for example, in a development environment or a test environment, syntax check and content check are performed on the SQL statement, and after the check is passed, the SQL statement is provided to the DBA for execution, and if the execution is successful, the SQL statement is considered to be qualified for the test. And then, the SQL sentences which are qualified in the test are input into the production environment by a developer to be executed, but because whether the input SQL sentences are tested cannot be judged in the production environment, the safety of the SQL sentences is completely ensured by the developer who submits the SQL sentences, so that the risk of executing the SQL sentences in the production environment becomes uncontrollable, and serious consequences such as database information leakage, collapse and the like can occur.
In order to ensure that the SQL statements executed in the production environment are tested, in the prior art, the tested SQL statements are marked, the SQL statements are distinguished by the marks in the production environment, and only the marked SQL statements are executed, thereby ensuring that all the SQL statements executed in the production environment are tested. However, the above method still has the following disadvantages through research and discovery: the tested SQL statement is issued to a production environment by a developer after being marked, and in the stage from the test to the release, the SQL statement is at risk of being tampered, if the marked SQL statement is modified, the modified SQL statement still has a mark, and whether the marked SQL statement is modified cannot be judged in the production environment, that is, the SQL statement issued to the production environment is the tested and untampered SQL statement, so that the risk of executing the SQL statement in the production environment can still be uncontrollable.
Disclosure of Invention
One of the objectives of the present invention is to provide an SQL version control system for solving the environmental difference, so as to solve the technical problem that it cannot be guaranteed in the prior art that the executed SQL information in the production environment is tested and is not tampered after the test.
The basic scheme provided by the invention is as follows: a SQL version control system for solving the environmental difference comprises a test subsystem and a production subsystem, wherein the test subsystem is used for testing input SQL information and encrypting the SQL information when the test is passed; the production subsystem is used for judging whether the input SQL information is the encrypted SQL information or not, and if so, executing the SQL information.
The beneficial effects of the first basic scheme are as follows: the test subsystem tests the input SQL information, and encrypts the SQL information under the condition that the test is passed, namely the tested SQL information is encrypted, and the untested SQL information is unencrypted. Through the encryption mode, the SQL information is prevented from being tampered by others, and the SQL information input into the production subsystem is ensured to be the tested SQL information. The production subsystem judges the input SQL information, when the input SQL information is judged to be the encrypted SQL information, the input SQL information is known to be tested, and the SQL information generated by decrypting the encrypted SQL information is executed at the moment, so that the SQL information executed in the production environment is tested and is not tampered. Compared with the mode that developers submitting SQL information ensure the safety of the SQL information in the prior art, the SQL information executed by the SQL information is tested and is not tampered after the test, so that the execution risk is controllable, the conditions that the information of the database is leaked and crashed and the like caused by the execution of the input SQL information are avoided, and the risk of executing the SQL information is effectively controlled.
Further, the production subsystem is used for decrypting the input SQL information, and when the decryption is successful, the input SQL information is judged to be the encrypted SQL information. Has the advantages that: and judging whether the SQL information input into the production subsystem is the encrypted SQL information or not according to the decryption result, finishing the judgment operation while decrypting and accelerating the response speed of the system.
Further, the production subsystem is used for checking the SQL information when judging that the input SQL information is the encrypted SQL information, and executing the SQL information when the checking is passed. Has the advantages that: in a development environment or a test environment, the test system is mainly used for a developer to test, and in a production environment, the test system is used by a user, and the two environments are different due to different users. And verifying the SQL information generated by decrypting the encrypted SQL information again in the production subsystem, namely verifying the tested SQL information, and ensuring that the tested SQL information can be executed under a real production environment by a mode of re-verification.
Further, the test subsystem comprises a test order creating module, the test order creating module is used for creating an SQL test order according to the SQL information, and the test subsystem is used for testing the SQL test order; the production subsystem comprises a production order creating module, the production order creating module is used for creating an SQL production order according to the encrypted SQL information when the input SQL information is judged to be the encrypted SQL information, and the production subsystem is used for auditing the SQL production order. Has the advantages that: the SQL test order is created by the test order creating module according to the input SQL information, so that the SQL information to be tested can be distinguished and searched conveniently, and the SQL information can be tested. When the SQL information input is judged to be the encrypted SQL information, the SQL production order is created according to the SQL information generated by decrypting the encrypted SQL information through the production order creating module, namely the SQL production order is created only when the production subsystem inputs the unencrypted SQL information to the production subsystem under the condition of encryption and import of the SQL information, the SQL production order cannot be created, so that the SQL information input by the production subsystem is ensured to be consistent with the SQL information tested by the testing subsystem, and the risk of executing the SQL information is effectively controlled.
Further, the test subsystem comprises a test and audit module and an execution test module, wherein the test and audit module is used for performing syntax audit and content audit on the SQL test order, and the execution test module is used for executing the SQL test order when the syntax audit and the content audit are passed. Has the advantages that: the syntax and the content of the SQL test order are checked through the test and check module, and the subsequent SQL test order can be smoothly executed. The SQL test order which passes the syntax examination and the content examination is executed through the execution test module, the test is considered to pass after the execution is successful, and the SQL information can be encrypted.
The second objective of the present invention is to provide a method for controlling SQL version to solve the environmental difference, so as to solve the technical problem that the SQL information executed in the production environment cannot be guaranteed to be tested and is not tampered after testing in the prior art.
The second basic scheme is as follows: the method comprises the following steps:
testing, namely testing the input SQL information, and encrypting the SQL information when the test is passed;
and a production step, namely judging whether the input SQL information is the encrypted SQL information, and if so, executing the SQL information.
The second basic scheme has the beneficial effects that: and testing the input SQL information through the testing step, and encrypting the SQL information when the test is passed. Whether the SQL information can be successfully executed in the production environment is judged through testing, and risks existing in the SQL information execution in the production environment are estimated, so that the risk of executing the SQL information can be effectively controlled subsequently. The SQL information passing the test is marked in an encryption mode, so that the SQL information passing the test and the SQL information failing the test can be distinguished, and the SQL information passing the test can be prevented from being tampered.
And judging the input SQL information through the production step, and executing the SQL information generated by decrypting the input SQL information when judging that the input SQL information is the encrypted SQL information. When the input SQL information is judged to be the encrypted SQL information, the input SQL information is considered to pass the test and not to be tampered, namely the execution risk of the SQL information is considered to be controllable, so that the conditions of database information leakage, collapse and the like caused by the execution of the input SQL information are avoided, and the risk of executing the SQL information is effectively controlled.
Further, the production step further comprises the steps of: and decrypting the input SQL information, and judging that the input SQL information is the encrypted SQL information when the decryption is successful. Has the advantages that: the input SQL information is judged through the decryption result, the judgment operation is completed while the decryption is performed, a judgment step does not need to be set independently, and the response speed of the system is increased.
Further, the production step further comprises the steps of: and when the judgment result is that the input SQL information is the encrypted SQL information, the SQL information is checked, and when the check is passed, the SQL information is executed. Has the advantages that: the SQL information is checked again in the production judging step, and the main reason is that the production environment and the test environment have certain difference, so that the SQL information is checked again in the production environment, and the SQL information generated by decrypting the encrypted SQL information can be executed in the real production environment.
Further, the testing step further comprises the steps of: creating an SQL test order according to the input SQL information, and testing the SQL test order;
the production steps further comprise the following steps: and judging whether the input SQL information is the encrypted SQL information, if so, creating an SQL production order according to the encrypted SQL information, and auditing the SQL production order.
Has the advantages that: the SQL test order is created for the input SQL information in the test step, the SQL production order is created according to the judgment result in the production step, and the SQL production order is created according to the SQL information generated by decrypting the encrypted SQL information only when the judgment result is that the input SQL information is the encrypted SQL information, namely, the SQL production order is created under the condition of encryption import of the SQL information, namely, the unencrypted SQL information is input, and the SQL production order cannot be created, so that the SQL information input in the production environment is consistent with the SQL information tested in the test environment, and the risk of executing the SQL information is effectively controlled.
Further, the testing step further comprises the steps of: and when the SQL test order is tested, performing syntax audit and content audit on the SQL test order, and executing the SQL test order when the syntax audit and the content audit are passed, wherein the test is passed when the execution is successful. Has the advantages that: the SQL test order is checked through syntax checking and content checking, and standardization of SQL information is guaranteed, so that the subsequent SQL test order can be smoothly executed. And executing the SQL test order, and if the execution is successful, considering that the test is passed, and further encrypting the SQL information.
Drawings
FIG. 1 is a logic diagram of a first embodiment of an SQL version control system for solving environmental differences according to the present invention;
FIG. 2 is a logic block diagram of a second embodiment of the SQL version control system for solving the environmental difference according to the invention;
fig. 3 is a logic block diagram of a third embodiment of the SQL version control system for solving the environmental difference according to the present invention.
Detailed Description
The following is further detailed by way of specific embodiments:
example one
An SQL version control system for solving the environmental difference, as shown in fig. 1, includes a testing subsystem and a production subsystem, the testing subsystem includes an obtaining module, a testing order creating module, a testing auditing module, an execution testing module and an encryption module, and the production subsystem includes a decryption module, a production order creating module and an execution module.
The acquisition module is used for acquiring the input SQL information and sending the SQL information to the test order creation module. The test order creating module is used for creating an SQL test order according to the SQL information and sending the SQL test order to the test auditing module. By means of creating the SQL test order, the SQL information can be distinguished and searched conveniently. The test and audit module is used for performing syntax audit and content audit on SQL information in the SQL test order and generating an audit result, wherein the audit result comprises audit pass and audit failure, and when the SQL test order passes the syntax audit and passes the content audit, the test and audit module generates an audit result which passes the audit and sends the audit result to the execution test module; and when the syntax audit or the content audit is not passed, generating an audit result of the failure of the audit, and returning the SQL information corresponding to the SQL test order.
The execution test module is used for executing the SQL information in the SQL test order and generating an execution result when receiving the auditing result passing the auditing, wherein the execution result comprises a test passing and a test failure, the execution result passing the test is generated when the execution is successful, the execution result is sent to the encryption module, the execution result failing the test is generated when the execution is failed, and the SQL information corresponding to the SQL test order is returned. The encryption module is used for encrypting the SQL information corresponding to the SQL test order when receiving the execution result that the test is passed, namely, judging whether the SQL information is encrypted to know whether the SQL information is tested, and the encryption module can prevent the encrypted SQL information from being tampered by an encryption mode. In this embodiment, the encryption module is configured to encrypt the SQL information according to a symmetric encryption technology, where a ciphertext generated by the encryption is the encrypted SQL information, and the symmetric encryption technology is a mature technology at present, and is not described in detail again.
The decryption module is used for acquiring the input SQL information, decrypting the SQL information and generating a decryption result and decrypted SQL information, wherein the decryption result comprises decryption success and decryption failure, when the decryption is successful, the decryption result and the decrypted SQL information are sent to the production order creation module, and the input SQL information is considered as the encrypted SQL information at this moment; when decryption fails, the SQL information is returned. In this embodiment, the decryption module is configured to decrypt the SQL information according to the symmetric encryption technology and generate a decryption result, where a plaintext generated by decryption is the SQL information that passes the test.
And the production order creating module is used for creating an SQL production order according to the decrypted SQL information and sending the SQL production order to the execution module when receiving the decryption result of successful decryption. The execution module is used for executing the SQL information in the SQL production order when receiving the SQL production order.
The SQL version control method for solving the environmental difference comprises a testing step and a production step.
The testing step specifically comprises the following steps:
s101: and acquiring input SQL information in a test environment, and creating an SQL test order according to the SQL information.
S102: and performing syntax examination and content examination on the SQL information in the SQL test order, and generating an examination result, wherein the examination result comprises pass and failure of examination. And when the grammar audit is passed and the content audit is passed, generating an audit result of the audit passing, and when the grammar audit or the content audit is not passed, generating an audit result of the audit failure.
S103: and when the SQL information in the SQL test order passes the examination, executing the SQL information and generating an execution result. The execution result comprises a test pass and a test fail, the execution result of the test pass is generated when the execution is successful, and the execution result of the test fail is generated when the execution fails.
S104: and when the execution result of the SQL information in the SQL test order is that the test is passed, encrypting the SQL information corresponding to the SQL test order.
The production steps specifically comprise the following steps:
s201: and acquiring the input SQL information in the production environment, decrypting the SQL information, and generating a decryption result and decrypted SQL information, wherein the decryption result comprises decryption success and decryption failure. When the SQL information can be decrypted, a decryption result with a successful decryption is generated, and step S202 is executed, otherwise, a decryption result with a failed decryption is generated.
S202: and when the decryption result of the SQL information is that the decryption is successful, judging that the input SQL information is the encrypted SQL information, namely the SQL information which passes the test and is not tampered, and creating an SQL production order according to the decrypted SQL information.
S204: the SQL information in the SQL production order is executed.
Example two
The difference between the present embodiment and the first embodiment is: in this embodiment, when the SQL production order is created, the SQL production order needs to be checked, and the SQL information in the SQL production order is executed only when the check is passed.
As shown in fig. 2, the production subsystem in the SQL version control system for solving the environmental difference further includes a production auditing module, and the production order creating module sends the SQL production order to the production auditing module when creating the SQL production order. The production auditing module is used for performing syntax auditing and content auditing on SQL information in the SQL production order and generating auditing results, wherein the auditing results comprise auditing pass and auditing failure, and when the SQL production order passes the syntax auditing and passes the content auditing, the production auditing module generates auditing results which pass the auditing and sends the auditing results to the execution module; and when the syntax audit or the content audit is not passed, generating an audit result of the failure of the audit, and returning the SQL information corresponding to the SQL production order. And the execution module is used for executing the SQL information in the SQL production order when the auditing result passing the auditing is received.
A SQL version control method for solving the environmental difference uses the SQL version control system for solving the environmental difference, and a step S203 is further included between the step S202 and the step S204, and the step S203 specifically includes the following steps:
s203: and performing syntax examination and content examination on the SQL information in the SQL production order, and generating an examination result, wherein the examination result comprises pass and failure of examination. And when the grammar audit is passed and the content audit is passed, generating an audit result of the audit passing, and when the grammar audit or the content audit is not passed, generating an audit result of the audit failure.
S204: and when the SQL information in the SQL production order passes the verification, executing the SQL information in the SQL production order.
EXAMPLE III
The difference between the present embodiment and the first embodiment is: in this embodiment, the SQL information that fails to be decrypted is tested and executed again, the check execution information is obtained, the pre-stored test execution information is compared, and when the check execution information is the same as the test execution information, it is determined that the input SQL information is the SQL information that is forgotten to be encrypted, and the input SQL information can be executed.
The SQL version control system for solving the environmental difference comprises a cache database, a testing subsystem, a marking module, a judging module, a screening module, a matching module and an inspection module, as shown in figure 3.
The execution test module is also used for generating test execution information when generating an execution result that the test passes and sending the test execution information to the buffer database. The encryption module is used for sending the encrypted SQL information corresponding to the test execution information to the marking module. The marking module is used for automatically generating a marking code according to the encrypted SQL information, marking the encrypted SQL information according to the marking code, outputting the marked encrypted SQL information and sending the marking code to the cache database. The cache database is used for associating the mark codes with the test execution information and storing the mark codes and the test execution information.
The decryption module is used for sending the input SQL information to the judgment module when a decryption result of decryption failure is generated. The judging module is used for judging whether the input SQL information has a mark or not, if so, updating the input SQL information, updating to obtain a mark code and unmarked SQL information, sending the mark code to the screening module, and sending the unmarked SQL information to the checking module; otherwise, returning the SQL information. The screening module is used for screening out test execution information from the database according to the mark codes and sending the test execution information to the matching module. The checking module is used for inputting unmarked SQL information into the testing subsystem and acquiring an execution result and/or test execution information generated by the execution testing module, and is also used for sending the execution result to the matching module when the execution result is testing failure, and is used for taking the acquired test execution information as the checking execution information and sending the checking execution information to the matching module when the execution result is testing passing. The matching module is used for clearing the test execution information corresponding to the received execution result when receiving the execution result and returning to the corresponding SQL information according to the execution result; the system is also used for comparing the checking execution information with the test execution information when the checking execution information is received, generating a checking result of successful checking when the checking execution information and the test execution information are the same, and sending the checking result and the unmarked SQL information to the production order creation module; otherwise, generating the checking result of the checking failure and returning the corresponding SQL information.
The production order creating module is also used for creating the SQL production order according to the unmarked SQL information when receiving the checking result of successful checking.
The SQL version control method for solving the environmental difference uses the SQL version control system for solving the environmental difference and further comprises steps S105, S106, S2021, S2022, S2023 and S2024.
Step S103 further includes: and when the execution result of the SQL information in the SQL test order is that the test is passed, generating test execution information.
S105: and generating a marking code according to the encrypted SQL information, marking the encrypted SQL information according to the marking code, and outputting the marked encrypted SQL information.
S106: and associating the mark codes with the test execution information, and storing the associated mark codes and the test execution information.
Step S201 further includes: when a decryption result of which decryption fails is generated, step S2021 is performed.
S2021: and when the decryption result of the SQL information is decryption failure, judging whether the input SQL information has a mark or not, if so, updating the input SQL information, updating to obtain a mark code and the unmarked SQL information, otherwise, returning the corresponding SQL information.
S2022: screening the stored test execution information according to the mark codes, acquiring the test execution information corresponding to the mark codes, executing steps S101, S102 and S103 by taking unmarked SQL information as input, acquiring the execution result and/or the test execution information output by the step S103, and executing step S2023 when the execution result is test failure; when the execution result is that the test passes, step S2024 is executed.
S2023: and returning the corresponding SQL information according to the execution result, and clearing the test execution information corresponding to the execution result.
S2024: taking the obtained test execution information as inspection execution information, comparing the inspection execution information with the test execution information, generating an inspection result of successful inspection when the inspection execution information and the test execution information are the same, creating an SQL production order according to unmarked SQL information, and executing the step S204; and when the two are different, generating an inspection result of the inspection failure and returning the corresponding SQL information.
When decryption fails, the SQL information is not directly returned, but whether the input SQL information is marked or not is judged, if yes, the possibility that the input SQL information passes the test but is not encrypted exists, therefore, the input SQL information with the mark is tested again, the check execution information obtained by the test is compared with the test execution information generated by the input SQL information under the test environment, and when the two are the same, the input SQL information can be considered to be tested and not tampered and can enter the production environment for execution; when the two are different, the input SQL information is considered to be tested, but there is a possibility of being tampered, and therefore the input SQL information is returned. Through the mode of retesting, do not need to return SQL information directly, thus save the link that the development personnel retest, reach the purpose of shortening development time and test time.
The foregoing is merely an example of the present invention, and common general knowledge in the field of known specific structures and characteristics is not described herein in any greater extent than that known in the art at the filing date or prior to the priority date of the application, so that those skilled in the art can now appreciate that all of the above-described techniques in this field and have the ability to apply routine experimentation before this date can be combined with one or more of the present teachings to complete and implement the present invention, and that certain typical known structures or known methods do not pose any impediments to the implementation of the present invention by those skilled in the art. It should be noted that, for those skilled in the art, without departing from the structure of the present invention, several changes and modifications can be made, which should also be regarded as the protection scope of the present invention, and these will not affect the effect of the implementation of the present invention and the practicability of the patent. The scope of the claims of the present application shall be determined by the contents of the claims, and the description of the embodiments and the like in the specification shall be used to explain the contents of the claims.
Claims (10)
1. An SQL version control system for solving the environmental difference is characterized in that: the system comprises a test subsystem and a production subsystem, wherein the test subsystem is used for testing the input SQL information and encrypting the SQL information when the test is passed; the production subsystem is used for judging whether the input SQL information is the encrypted SQL information or not, and if so, executing the SQL information.
2. The SQL version control system for solving the environmental difference according to claim 1, wherein: the production subsystem is used for decrypting the input SQL information, and when the decryption is successful, the input SQL information is judged to be the encrypted SQL information.
3. The SQL version control system for solving the environmental difference according to claim 1, wherein: and the production subsystem is used for checking the SQL information when judging that the input SQL information is the encrypted SQL information and executing the SQL information when the checking is passed.
4. The SQL version control system for solving the environmental difference according to claim 3, wherein: the test subsystem comprises a test order creating module, the test order creating module is used for creating an SQL test order according to the SQL information, and the test subsystem is used for testing the SQL test order; the production subsystem comprises a production order creating module, the production order creating module is used for creating an SQL production order according to the encrypted SQL information when the input SQL information is judged to be the encrypted SQL information, and the production subsystem is used for auditing the SQL production order.
5. The SQL version control system for solving the environmental difference according to claim 4, wherein: the test subsystem comprises a test and audit module and an execution test module, wherein the test and audit module is used for performing syntax audit and content audit on the SQL test order, and the execution test module is used for executing the SQL test order when the syntax audit and the content audit are passed.
6. A SQL version control method for solving environment difference is characterized by comprising the following steps:
testing, namely testing the input SQL information, and encrypting the SQL information when the test is passed;
and a production step, namely judging whether the input SQL information is the encrypted SQL information, and if so, executing the SQL information.
7. The SQL version control method for solving the environmental difference according to claim 6, wherein the production step further comprises the following steps: and decrypting the input SQL information, and judging that the input SQL information is the encrypted SQL information when the decryption is successful.
8. The SQL version control method for solving the environmental difference according to claim 6, wherein the production step further comprises the following steps: and when the judgment result is that the input SQL information is the encrypted SQL information, the SQL information is checked, and when the check is passed, the SQL information is executed.
9. The SQL version control method for solving the environmental difference according to claim 8, wherein the testing step further comprises the steps of: creating an SQL test order according to the input SQL information, and testing the SQL test order;
the production steps further comprise the following steps: and judging whether the input SQL information is the encrypted SQL information, if so, creating an SQL production order according to the encrypted SQL information, and auditing the SQL production order.
10. The SQL version control method for solving the environmental difference according to claim 9, wherein the testing step further comprises the steps of: and when the SQL test order is tested, performing syntax audit and content audit on the SQL test order, and executing the SQL test order when the syntax audit and the content audit are passed, wherein the test is passed when the execution is successful.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010317868.XA CN111552698B (en) | 2020-04-21 | 2020-04-21 | SQL version control system and method for solving environmental difference |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010317868.XA CN111552698B (en) | 2020-04-21 | 2020-04-21 | SQL version control system and method for solving environmental difference |
Publications (2)
Publication Number | Publication Date |
---|---|
CN111552698A true CN111552698A (en) | 2020-08-18 |
CN111552698B CN111552698B (en) | 2023-06-06 |
Family
ID=72001203
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202010317868.XA Active CN111552698B (en) | 2020-04-21 | 2020-04-21 | SQL version control system and method for solving environmental difference |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN111552698B (en) |
Citations (35)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101576843A (en) * | 2008-05-07 | 2009-11-11 | 阿里巴巴集团控股有限公司 | Method and device for testing application program interface |
US20100198846A1 (en) * | 2009-01-30 | 2010-08-05 | International Business Machines Corporation | Method for order invariant correlated encrypting of data and sql queries for maintaining data privacy and securely resolving customer defects |
CN102663649A (en) * | 2012-05-18 | 2012-09-12 | 苏州工业园区凌志软件有限公司 | Financial derivative transaction system |
CN102708142A (en) * | 2012-03-14 | 2012-10-03 | 北京神州数码思特奇信息技术股份有限公司 | Method and system for acquiring background data through structured query language (SQL) custom-made template |
CN102968455A (en) * | 2012-10-31 | 2013-03-13 | 山东浪潮齐鲁软件产业股份有限公司 | Transparent database encrypting method of application layer |
CN103180848A (en) * | 2010-09-09 | 2013-06-26 | 优质生活联合服务有限公司 | A system and a method for copying data |
CN103186798A (en) * | 2011-12-27 | 2013-07-03 | 国民技术股份有限公司 | Production testing system for IC card |
CN103259798A (en) * | 2013-05-21 | 2013-08-21 | 浪潮集团山东通用软件有限公司 | Dynamic encrypting and verifying method in interactive process with Webservice |
CN103713994A (en) * | 2012-09-28 | 2014-04-09 | Sap股份公司 | System and method to validate test cases |
CN104378788A (en) * | 2014-12-11 | 2015-02-25 | 上海斐讯数据通信技术有限公司 | Method and system for testing wireless network access facility |
CN104615667A (en) * | 2015-01-13 | 2015-05-13 | 联动优势电子商务有限公司 | Basic data generation method and device and test data generation method and device |
CN105122255A (en) * | 2012-12-17 | 2015-12-02 | 微软技术许可有限责任公司 | Management system for point of care testing |
CN105389257A (en) * | 2015-11-11 | 2016-03-09 | 中国建设银行股份有限公司 | System parameter processing method, apparatus and system |
CN105447357A (en) * | 2015-12-03 | 2016-03-30 | 上海卓易科技股份有限公司 | Application processing method and terminal |
CN106201800A (en) * | 2016-07-15 | 2016-12-07 | 北京捷科智诚科技有限公司 | A kind of test design platform |
CN107122258A (en) * | 2017-04-18 | 2017-09-01 | 上海雷腾软件股份有限公司 | Method and apparatus for the state code check of test interface |
CN107301130A (en) * | 2017-06-28 | 2017-10-27 | 歌尔科技有限公司 | A kind of VR all-in-ones testing tool and its method |
CN107480478A (en) * | 2017-08-14 | 2017-12-15 | 钟尚亮 | A kind of encryption method and operation method of JAVA application programs |
CN107644175A (en) * | 2017-09-13 | 2018-01-30 | 南京南瑞集团公司 | A kind of method for preventing SQL injection |
CN107729045A (en) * | 2017-09-30 | 2018-02-23 | 武汉汉思信息技术有限责任公司 | Application program automates version dissemination method and system |
CN107844425A (en) * | 2017-11-16 | 2018-03-27 | 中国银行股份有限公司 | A kind of database statement inspection method and device |
CN108932434A (en) * | 2018-06-20 | 2018-12-04 | 中国农业银行股份有限公司 | A kind of data ciphering method and device based on machine learning techniques |
CN109104724A (en) * | 2018-06-30 | 2018-12-28 | 江苏恒宝智能系统技术有限公司 | A kind of data ciphering method and device for device upgrade |
CN109144878A (en) * | 2018-08-31 | 2019-01-04 | 重庆富民银行股份有限公司 | Code test method based on path difference |
CN109241751A (en) * | 2018-07-25 | 2019-01-18 | 郑州云海信息技术有限公司 | Data encryption verification method and system based on SQL Server |
CN109254918A (en) * | 2018-08-31 | 2019-01-22 | 重庆富民银行股份有限公司 | Code tester system based on path difference |
CN109324963A (en) * | 2018-08-22 | 2019-02-12 | 中国平安人寿保险股份有限公司 | The method and terminal device of automatic test profitable result |
CN109542762A (en) * | 2018-10-16 | 2019-03-29 | 深圳壹账通智能科技有限公司 | Encryption function verification method, device and the computer equipment of terminal plate |
CN109960942A (en) * | 2019-03-27 | 2019-07-02 | 厦门商集网络科技有限责任公司 | Database data encipher-decipher method and its system based on database connection pool |
US10353806B1 (en) * | 2015-12-07 | 2019-07-16 | Mx Technologies, Inc. | Multi-platform testing automation |
CN110097299A (en) * | 2019-05-31 | 2019-08-06 | 济南中维世纪科技有限公司 | A kind of factory order production system and its application reducing cost |
CN110287208A (en) * | 2019-05-27 | 2019-09-27 | 北京三快在线科技有限公司 | The method and apparatus of database field encryption, storage medium |
CN110795450A (en) * | 2019-09-12 | 2020-02-14 | 连连银通电子支付有限公司 | SQL processing method and device |
CN111008211A (en) * | 2019-12-06 | 2020-04-14 | 北京百分点信息科技有限公司 | Visual interface creating method and device, readable storage medium and electronic equipment |
CN111026671A (en) * | 2019-12-16 | 2020-04-17 | 腾讯科技(深圳)有限公司 | Test case set construction method and test method based on test case set |
-
2020
- 2020-04-21 CN CN202010317868.XA patent/CN111552698B/en active Active
Patent Citations (35)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101576843A (en) * | 2008-05-07 | 2009-11-11 | 阿里巴巴集团控股有限公司 | Method and device for testing application program interface |
US20100198846A1 (en) * | 2009-01-30 | 2010-08-05 | International Business Machines Corporation | Method for order invariant correlated encrypting of data and sql queries for maintaining data privacy and securely resolving customer defects |
CN103180848A (en) * | 2010-09-09 | 2013-06-26 | 优质生活联合服务有限公司 | A system and a method for copying data |
CN103186798A (en) * | 2011-12-27 | 2013-07-03 | 国民技术股份有限公司 | Production testing system for IC card |
CN102708142A (en) * | 2012-03-14 | 2012-10-03 | 北京神州数码思特奇信息技术股份有限公司 | Method and system for acquiring background data through structured query language (SQL) custom-made template |
CN102663649A (en) * | 2012-05-18 | 2012-09-12 | 苏州工业园区凌志软件有限公司 | Financial derivative transaction system |
CN103713994A (en) * | 2012-09-28 | 2014-04-09 | Sap股份公司 | System and method to validate test cases |
CN102968455A (en) * | 2012-10-31 | 2013-03-13 | 山东浪潮齐鲁软件产业股份有限公司 | Transparent database encrypting method of application layer |
CN105122255A (en) * | 2012-12-17 | 2015-12-02 | 微软技术许可有限责任公司 | Management system for point of care testing |
CN103259798A (en) * | 2013-05-21 | 2013-08-21 | 浪潮集团山东通用软件有限公司 | Dynamic encrypting and verifying method in interactive process with Webservice |
CN104378788A (en) * | 2014-12-11 | 2015-02-25 | 上海斐讯数据通信技术有限公司 | Method and system for testing wireless network access facility |
CN104615667A (en) * | 2015-01-13 | 2015-05-13 | 联动优势电子商务有限公司 | Basic data generation method and device and test data generation method and device |
CN105389257A (en) * | 2015-11-11 | 2016-03-09 | 中国建设银行股份有限公司 | System parameter processing method, apparatus and system |
CN105447357A (en) * | 2015-12-03 | 2016-03-30 | 上海卓易科技股份有限公司 | Application processing method and terminal |
US10353806B1 (en) * | 2015-12-07 | 2019-07-16 | Mx Technologies, Inc. | Multi-platform testing automation |
CN106201800A (en) * | 2016-07-15 | 2016-12-07 | 北京捷科智诚科技有限公司 | A kind of test design platform |
CN107122258A (en) * | 2017-04-18 | 2017-09-01 | 上海雷腾软件股份有限公司 | Method and apparatus for the state code check of test interface |
CN107301130A (en) * | 2017-06-28 | 2017-10-27 | 歌尔科技有限公司 | A kind of VR all-in-ones testing tool and its method |
CN107480478A (en) * | 2017-08-14 | 2017-12-15 | 钟尚亮 | A kind of encryption method and operation method of JAVA application programs |
CN107644175A (en) * | 2017-09-13 | 2018-01-30 | 南京南瑞集团公司 | A kind of method for preventing SQL injection |
CN107729045A (en) * | 2017-09-30 | 2018-02-23 | 武汉汉思信息技术有限责任公司 | Application program automates version dissemination method and system |
CN107844425A (en) * | 2017-11-16 | 2018-03-27 | 中国银行股份有限公司 | A kind of database statement inspection method and device |
CN108932434A (en) * | 2018-06-20 | 2018-12-04 | 中国农业银行股份有限公司 | A kind of data ciphering method and device based on machine learning techniques |
CN109104724A (en) * | 2018-06-30 | 2018-12-28 | 江苏恒宝智能系统技术有限公司 | A kind of data ciphering method and device for device upgrade |
CN109241751A (en) * | 2018-07-25 | 2019-01-18 | 郑州云海信息技术有限公司 | Data encryption verification method and system based on SQL Server |
CN109324963A (en) * | 2018-08-22 | 2019-02-12 | 中国平安人寿保险股份有限公司 | The method and terminal device of automatic test profitable result |
CN109254918A (en) * | 2018-08-31 | 2019-01-22 | 重庆富民银行股份有限公司 | Code tester system based on path difference |
CN109144878A (en) * | 2018-08-31 | 2019-01-04 | 重庆富民银行股份有限公司 | Code test method based on path difference |
CN109542762A (en) * | 2018-10-16 | 2019-03-29 | 深圳壹账通智能科技有限公司 | Encryption function verification method, device and the computer equipment of terminal plate |
CN109960942A (en) * | 2019-03-27 | 2019-07-02 | 厦门商集网络科技有限责任公司 | Database data encipher-decipher method and its system based on database connection pool |
CN110287208A (en) * | 2019-05-27 | 2019-09-27 | 北京三快在线科技有限公司 | The method and apparatus of database field encryption, storage medium |
CN110097299A (en) * | 2019-05-31 | 2019-08-06 | 济南中维世纪科技有限公司 | A kind of factory order production system and its application reducing cost |
CN110795450A (en) * | 2019-09-12 | 2020-02-14 | 连连银通电子支付有限公司 | SQL processing method and device |
CN111008211A (en) * | 2019-12-06 | 2020-04-14 | 北京百分点信息科技有限公司 | Visual interface creating method and device, readable storage medium and electronic equipment |
CN111026671A (en) * | 2019-12-16 | 2020-04-17 | 腾讯科技(深圳)有限公司 | Test case set construction method and test method based on test case set |
Non-Patent Citations (3)
Title |
---|
BOYANG WANG: "Circular Range Search on Encrypted Spatial Data", 《2015 IEEE 35TH INTERNATIONAL CONFERENCE ON DISTRIBUTED COMPUTING SYSTEMS》 * |
何颖;刘家豪;: "基于社会工程学的网络安全检测技术研究", 广东通信技术 * |
毕红棋;陈露;: "基于混合算法的加密与解密的应用研究", 现代信息科技 * |
Also Published As
Publication number | Publication date |
---|---|
CN111552698B (en) | 2023-06-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Khoury et al. | How secure is code generated by chatgpt? | |
Ma et al. | Cdrep: Automatic repair of cryptographic misuses in android applications | |
Continella et al. | Obfuscation-Resilient Privacy Leak Detection for Mobile Apps Through Differential Analysis. | |
Banerjee et al. | Expressive declassification policies and modular static enforcement | |
CN101178758B (en) | Secure processor | |
CN110333868B (en) | Method and system for generating installation packages of sub-applications | |
CN109960903A (en) | A kind of method, apparatus, electronic equipment and storage medium that application is reinforced | |
CN101416129B (en) | Field apparatus | |
CN113505398A (en) | Method, system, electronic device and storage medium for safely sharing industrial big data | |
US20090222927A1 (en) | Concealment of Information in Electronic Design Automation | |
CN104135531B (en) | A kind of upgrade method and device of Web softwares | |
Meza et al. | Security verification of the opentitan hardware root of trust | |
CN108205491A (en) | A kind of trusted technology compatibility test method based on NKV6.0 systems | |
CN102004887A (en) | Method and device for protecting program | |
Engels et al. | A critical view on the real-world security of logic locking | |
CN112039662B (en) | Symmetric encryption transmission method for sensitive data in secret related unit Web application webpage | |
CN111552698A (en) | SQL version control system and method for solving environmental difference | |
US11822467B2 (en) | Conducting software testing using dynamically masked data | |
CN108376212B (en) | Execution code security protection method and device and electronic device | |
US20080155690A1 (en) | System and Method for Authenticating and Validating the Linkage Between Input Files and Output Files in a Computational Process | |
Meghanathan | Identification and Removal of Software Security Vulnerabilities using Source Code Analysis: A Case Study on a Java File Writer Program with Password Validation Features. | |
CN109643352A (en) | Across safety guidance, which updates, retains protected secret | |
CN116964575A (en) | Code deployment | |
Lloyd et al. | Security analysis of a biometric authentication system using UMLsec and JML | |
KR101294866B1 (en) | Development environment management system and development environment management method thereof |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |