本文已被:浏览 2067次 下载 3530次
Received:May 19, 2011 Revised:June 25, 2011
Received:May 19, 2011 Revised:June 25, 2011
中文摘要: 针对网站面临的应用层安全问题,对应用层安全防护体系进行了研究。从事前Web应用漏洞扫描和测试、事中Web应用攻击主动防护、事后页面篡改检测及恢复三个层面建立了一个网站应用层安全防护体系。实践结果表明,该安全防护体系实现了网站的应用层安全,有效提高了网站安全性。
Abstract:Concerning the problem of application-level security in portal, this paper researched on security protection architecture of application-level. It built a security protection architecture of application-level which included vulnerability scanning and testing of Web application-level before the event, active protecting from Web application-level attacking during the event, detecting and recovering the modified page after the event. Application result showed that the security protection architecture achieved application-level security in portal, and enhanced portal security effectively.
keywords: application-level security protection vulnerability scan attack defense preventing page modification
文章编号: 中图分类号: 文献标志码:
基金项目:
| Author Name | Affiliation |
| XU Zhu-Bing | China Mobile Group Shanghai Co, Ltd, Shanghai 200233, China |
| Author Name | Affiliation |
| XU Zhu-Bing | China Mobile Group Shanghai Co, Ltd, Shanghai 200233, China |
引用文本:
徐竹冰.网站应用层安全防护体系.计算机系统应用,2012,21(1):81-84,64
XU Zhu-Bing.Security Protection Architecture of Application-Level in Portal.COMPUTER SYSTEMS APPLICATIONS,2012,21(1):81-84,64
徐竹冰.网站应用层安全防护体系.计算机系统应用,2012,21(1):81-84,64
XU Zhu-Bing.Security Protection Architecture of Application-Level in Portal.COMPUTER SYSTEMS APPLICATIONS,2012,21(1):81-84,64
