摘要： 在介绍数据传输和数据库安全重要性的基础上，分析了基于CA认证的远程数据访问模型，该模型分为客户身份认证模块、SQL解析模块、数据安全传输模块等功能模块，介绍了各模块所实现的功能和实现的流程。该模型利用CA认证过程来为通信两端提供安全可靠的通信通道，具有信息保密性、信息完整性、身份认证等功能，同时，对企业重要数据字段进行加密，来保证数据库端的数据安全，在一定程度上能保证数据在远程访问过程中的安全，同时保证数据在数据库端对非相关人员的不可见性。

关键词: CA认证, 远程访问, 数据安全

Abstract: Besides importance of data transmittal and database security illustrated, the requisite analysis of the model of teledata access based on CA authentication are elaborated as well. The model is divided into client authentication modules, SQL resolution modules, and data transmittal modules and so on. The model functioned with confidentiality, integrity, identity authentication etc, provide secure and reliable channel for sensitive data between two communication terminals; On the other hand, sensitive data in server database is encoded by fields, which keep invisibility for non-correlation persons. The model, to some extent, can keep sensitive data safe in most enterprises.

Key words: CA authentication, remote access, data security

中图分类号: 

• TP309