This paper conducts a comprehensive analysis of the security of LAN-based Educational Management Information System (EMIS), and proposes security policies and methods required by the system. Meanwhile, it adopts system permission allocation, user authentication, record tracking, protocol auditing, data backup, disaster recovery, warning system and other technologies to design a multi-layered database security protection system, which constructs a complete and effective security protection setup for EMIS.