發(fā)布時(shí)間：2018-04-05 07:27

  本文選題：主動(dòng)防御　切入點(diǎn)：Webjoin安全配置　出處：《北京郵電大學(xué)》2014年碩士論文

【摘要】：隨著信息時(shí)代的快速發(fā)展,Web技術(shù)突飛猛進(jìn),網(wǎng)絡(luò)技術(shù)朝著多樣化方向發(fā)展,但是隨之而來的Web安全問題也日益多樣化,給我們的信息網(wǎng)絡(luò)帶來極大的破壞。一方面,這些Web安全問題迫使網(wǎng)絡(luò)應(yīng)用的設(shè)計(jì)者提高安全防范意識(shí),加強(qiáng)應(yīng)用程序的健壯性；另一方面,針對(duì)安全問題的掃描評(píng)估軟件工具成為了各大網(wǎng)站不可或缺的漏洞檢測(cè)手段。然而這些還不足以應(yīng)付無孔不入的網(wǎng)絡(luò)入侵,而主動(dòng)防御技術(shù)因其防御的高時(shí)效性和低誤判率贏得了國(guó)內(nèi)外安全研究者的青睞,正逐步成長(zhǎng)并興起而來。 Webjoin server主要目標(biāo)是整合開源Web服務(wù)器,提供統(tǒng)一的操作維護(hù)界面、增強(qiáng)的異常檢測(cè)和異常處理的能力,同時(shí)又保證Web應(yīng)用開發(fā)兼容性,進(jìn)一步提升Web相關(guān)產(chǎn)品的可靠性和可維護(hù)性。本文研究并實(shí)現(xiàn)了Webjoin的主動(dòng)安全防御模塊�；趯�(duì)Webjoin服務(wù)器的安全性能需求和實(shí)現(xiàn)的可行性研究分析,本論文提出并設(shè)計(jì)實(shí)現(xiàn)了基于主動(dòng)防御思想的安全防御模塊,這個(gè)模塊主要實(shí)現(xiàn)了三個(gè)方面的安全防御工作：基于Webjoin服務(wù)器自身的防漏洞安全配置；重要頁(yè)面及文件的防篡改；網(wǎng)絡(luò)入侵行為的檢測(cè)。論文在三個(gè)功能子模塊的設(shè)計(jì)和實(shí)現(xiàn)中體現(xiàn)了針對(duì)性和創(chuàng)新性,對(duì)每個(gè)子模塊都進(jìn)行了詳細(xì)的設(shè)計(jì)和功能實(shí)現(xiàn),并對(duì)相關(guān)技術(shù)進(jìn)行了深入研究與實(shí)現(xiàn)。在論文的最后,對(duì)安全防御模塊整體進(jìn)行了功能及性能測(cè)試。
[Abstract]:With the rapid development of web technology in the information age, the network technology is developing in the direction of diversification. However, the security problems of Web are becoming more and more diversified, which brings great damage to our information network.On the one hand, these Web security problems force network application designers to enhance security awareness and enhance application robustness; on the other hand,The scanning and evaluation software tool for security problems has become an indispensable vulnerability detection tool for various websites.However, these are not enough to deal with the all-pervasive network intrusion, and the active defense technology has won the favor of domestic and foreign security researchers because of its high timeliness and low misjudgment rate, and is gradually growing up and rising.The main goal of Webjoin server is to integrate open source Web server, provide unified operation and maintenance interface, enhance the ability of exception detection and exception handling, and at the same time ensure the compatibility of Web application development.Further improve the reliability and maintainability of Web related products.The active security defense module of Webjoin is studied and implemented in this paper.Based on the analysis of the security performance requirements and the feasibility of the implementation of Webjoin server, this paper proposes and designs a security defense module based on active defense.This module mainly implements three aspects of security defense work: security configuration of vulnerability protection based on Webjoin server; anti-tampering of important pages and files; detection of network intrusion behavior.In the design and implementation of three functional sub-modules, the thesis embodies the pertinence and innovation, and carries on the detailed design and the function realization to each sub-module, and carries on the thorough research and the realization to the related technology.At the end of the thesis, the function and performance of the security defense module are tested.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前7條

1 孫克雷;;IDS中一種快速模式匹配算法[J];安徽理工大學(xué)學(xué)報(bào)(自然科學(xué)版);2006年03期

2 徐珊;袁小坊;王東;謝高崗;;Sunday字符串匹配算法的效率改進(jìn)[J];計(jì)算機(jī)工程與應(yīng)用;2011年29期

3 劉勝飛;張?jiān)迫?;一種改進(jìn)的BMH模式匹配算法[J];計(jì)算機(jī)科學(xué);2008年11期

4 閔聯(lián)營(yíng);趙婷婷;;BM算法的研究與改進(jìn)[J];武漢理工大學(xué)學(xué)報(bào)(交通科學(xué)與工程版);2006年03期

5 李映剛;;一種改進(jìn)的Sunday模式匹配算法[J];四川理工學(xué)院學(xué)報(bào)(自然科學(xué)版);2013年02期

6 錢屹,侯義斌;一種快速的字符串匹配算法[J];小型微型計(jì)算機(jī)系統(tǒng);2004年03期

7 王雁飛;張文俊;田豐;王海君;;一種改進(jìn)的Sunday字符串匹配算法[J];微電子學(xué)與計(jì)算機(jī);2013年04期

，

本文編號(hào)：1713768