本文選題：網(wǎng)站信息安全　切入點(diǎn)：體系結(jié)構(gòu)　出處：《電子科技大學(xué)》2014年碩士論文　論文類型：學(xué)位論文

【摘要】：隨著網(wǎng)絡(luò)的不斷普及和應(yīng)用，，網(wǎng)站的數(shù)量和規(guī)模急劇增加，給人們的工作和生活帶來了諸多便利。但是，網(wǎng)站遭受攻擊和網(wǎng)頁被篡改的事件日益頻繁，網(wǎng)絡(luò)不良信息泛濫，必須采取有效措施和技術(shù)手段來防范此類問題。本文針對當(dāng)前網(wǎng)站安全的現(xiàn)狀，設(shè)計并構(gòu)建了一個基于網(wǎng)頁防篡改和內(nèi)容過濾的網(wǎng)站信息安全防護(hù)系統(tǒng)，該系統(tǒng)在不影響網(wǎng)站可用性的前提下提高了網(wǎng)站的安全性，能夠防止各種不當(dāng)信息被發(fā)布和瀏覽，改善了網(wǎng)站和Web應(yīng)用系統(tǒng)的服務(wù)質(zhì)量。 首先，對當(dāng)前網(wǎng)站信息安全防護(hù)技術(shù)的研究發(fā)展現(xiàn)狀進(jìn)行了較為全面的概括和分析。根據(jù)網(wǎng)站建設(shè)中對信息安全管理和防護(hù)的需求，在研究現(xiàn)有網(wǎng)站信息安全防護(hù)技術(shù)的基礎(chǔ)上提出了基于C/S和B/S模式的網(wǎng)站信息安全防護(hù)系統(tǒng)體系框架，采用分布式的設(shè)計思想將系統(tǒng)劃分為控制服務(wù)器、防護(hù)系統(tǒng)終端和用戶管理控制臺三個子系統(tǒng)，提供了一套完整的網(wǎng)站安全管理解決方案。 然后，通過對現(xiàn)有網(wǎng)頁防篡改技術(shù)的比較和分析，綜合采用文件過濾驅(qū)動和事件觸發(fā)技術(shù)，設(shè)計并實(shí)現(xiàn)了網(wǎng)頁防篡改子系統(tǒng)，并對系統(tǒng)工作流程進(jìn)行了說明。繼而，歸納分析了當(dāng)前常用的Web文本信息過濾技術(shù)，針對中文網(wǎng)頁信息過濾的特點(diǎn)，設(shè)計了引入用戶反饋的進(jìn)行增量SVM學(xué)習(xí)的Web中文文本過濾子系統(tǒng)，該系統(tǒng)使用增量SVM學(xué)習(xí)的原理，將用戶反饋?zhàn)鳛镾VM的增量訓(xùn)練樣本，使得系統(tǒng)在使用過程中能夠不斷地充實(shí)自己的知識庫，從而提高過濾的精確性。 在以上工作的基礎(chǔ)上，論文對實(shí)現(xiàn)的原型進(jìn)行了測試，包括性能測試和功能測試，測試結(jié)果表明：系統(tǒng)運(yùn)行穩(wěn)定，功能良好，達(dá)到了預(yù)期的設(shè)計目標(biāo)。最后，總結(jié)了論文工作并指出今后工作方向。
[Abstract]:With the continuous popularization and application of the network, the number and scale of the website increases dramatically, which brings a lot of convenience to people's work and life. However, the attacks on the website and the tampering of the web page become more and more frequent, and the bad information of the network is flooding. It is necessary to take effective measures and technical measures to prevent this kind of problems. According to the current situation of website security, this paper designs and builds a website information security protection system based on anti-tampering and content filtering. This system can improve the security of the website without affecting the usability of the website, prevent all kinds of improper information from being published and browse, and improve the quality of service of the website and Web application system. First of all, the current research and development of information security protection technology is summarized and analyzed. According to the requirements of information security management and protection in website construction, On the basis of studying the existing information security protection technology of website, this paper puts forward the system framework of website information security protection system based on C / S and B / S mode, and divides the system into control server by using distributed design idea. The protection system terminal and the user management console three subsystems, has provided a complete website security management solution. Then, through the comparison and analysis of the existing anti-tampering technology, the paper designs and implements the anti-tampering subsystem of the web page by adopting the file filter driver and the event trigger technology, and explains the workflow of the system. This paper summarizes and analyzes the current common Web text information filtering technology. According to the characteristics of Chinese web page information filtering, a Web text filtering subsystem based on user feedback for incremental SVM learning is designed. The system uses the principle of incremental SVM learning. Taking user feedback as an incremental training sample of SVM, the system can constantly enrich its knowledge base in the process of use, thus improving the accuracy of filtering. On the basis of the above work, the prototype is tested, including performance test and function test. The test results show that the system runs stably, has good function, and achieves the expected design goal. The paper summarizes the work and points out the future work direction.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08;TP311.52

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 蔣瑜,陳循,楊雪;智能故障診斷研究與發(fā)展[J];兵工自動化;2002年02期

2 林鴻飛,姚天順;基于示例的中文文本過濾模型[J];大連理工大學(xué)學(xué)報;2000年03期

3 李楓;劉志永;馬麗;;網(wǎng)頁防篡改技術(shù)研究及應(yīng)用[J];電力信息化;2008年07期

4 劉彤;蔣繼婭;胡祥義;;分布式環(huán)境下文件內(nèi)容防篡改系統(tǒng)研究[J];計算機(jī)安全;2007年11期

5 周偉達(dá),張莉,焦李成;支撐矢量機(jī)推廣能力分析[J];電子學(xué)報;2001年05期

6 阮宏瑋;李華;王小雨;吳承勇;龐濱;;基于快照輪詢和文本檢測的批量網(wǎng)頁防篡改系統(tǒng)[J];廣西大學(xué)學(xué)報(自然科學(xué)版);2011年S1期

7 李凡,劉學(xué)照,盧安,謝四江;WindowsNT內(nèi)核下文件系統(tǒng)過濾驅(qū)動程序開發(fā)[J];華中科技大學(xué)學(xué)報(自然科學(xué)版);2003年01期

8 阮彤,馮東雷,李京;基于貝葉斯網(wǎng)絡(luò)的信息過濾模型研究[J];計算機(jī)研究與發(fā)展;2002年12期

9 呂宏偉,唐小力,王申;網(wǎng)頁內(nèi)容過濾技術(shù)中的特征提取[J];計算機(jī)工程與應(yīng)用;2004年31期

10 史朝輝,王曉丹,楊建勛;一種SVM增量訓(xùn)練淘汰算法[J];計算機(jī)工程與應(yīng)用;2005年23期

本文編號：1587206