一種新型網(wǎng)絡(luò)文件系統(tǒng)的安全防護(hù)體系的研究
發(fā)布時間:2018-11-06 10:04
【摘要】:隨著互聯(lián)網(wǎng)的普及,計算機(jī)更新?lián)Q代速度的加快,計算機(jī)與人們的生活聯(lián)系越來越緊密。現(xiàn)代社會計算機(jī)帶給人們很多的便利,如讓人們更快捷的通過網(wǎng)絡(luò)文件共享系統(tǒng)獲取所需要的各種文件。作為網(wǎng)絡(luò)文件共享系統(tǒng)的管理者,如何高效,安全,方便的利用現(xiàn)有的技術(shù)為用戶提供安全的網(wǎng)絡(luò)文件共享,防御黑客對網(wǎng)絡(luò)文件系統(tǒng)的攻擊將是本文研究的問題。 論文深入研究如何利用ASP技術(shù)高效,安全,方便的解決網(wǎng)絡(luò)文件共享系統(tǒng)的基礎(chǔ)上,設(shè)計并實(shí)現(xiàn)了一種新型的網(wǎng)絡(luò)文件系統(tǒng)的安全防護(hù)體系。論文系統(tǒng)基于B/S架構(gòu),涉及ASP技術(shù),權(quán)限認(rèn)證,網(wǎng)絡(luò)入侵技術(shù),無組件上傳,防盜鏈接等相關(guān)技術(shù),滿足不同權(quán)限用戶通過不同終端的瀏覽器進(jìn)入系統(tǒng)獲取所需文件。 論文實(shí)驗(yàn)系統(tǒng)以Windows XP為開發(fā)環(huán)境,以IIS為服務(wù)器,ASP為開發(fā)語言,Access2003為數(shù)據(jù)庫組成的一個網(wǎng)絡(luò)文件共享體系。系統(tǒng)前后界面用ASP設(shè)計,開發(fā)界面簡單整潔,具有很好的人機(jī)交互性。系統(tǒng)文件共享基于HTTP協(xié)議,安全措施包括,用戶認(rèn)證、加密核心信息,防SQL注入措施,無組件上傳,防盜鏈接設(shè)計,防數(shù)據(jù)庫下載,應(yīng)用硬盤保護(hù)網(wǎng)絡(luò)文件系統(tǒng)等。整個系統(tǒng)立足于成熟的Web環(huán)境,高效,安全,方便的滿足用戶的使用需求,具有很高的研究價值。 論文重點(diǎn)對系統(tǒng)的安全防護(hù)體系進(jìn)行研究。安全措施包括權(quán)限的認(rèn)證與管理,加密用戶信息,常見入侵漏洞的改進(jìn),無組件上傳的設(shè)計,防盜鏈接設(shè)計,利用硬盤保護(hù)網(wǎng)絡(luò)文件等。論文實(shí)驗(yàn)了多種入侵攻擊測試,獲取了大量的系統(tǒng)攻防數(shù)據(jù),分析了系統(tǒng)防御入侵攻擊的不足之處,提出了系統(tǒng)安全性能的改進(jìn)措施,并對下一步的工作進(jìn)行了展望。
[Abstract]:With the popularity of the Internet and the speed of computer replacement, computers are more and more closely connected with people's lives. In modern society, computers bring people a lot of convenience, such as making people get all kinds of files through the network file sharing system more quickly. As the administrator of the network file sharing system, how to efficiently, safely and conveniently make use of the existing technology to provide the users with secure network file sharing, and to defend the hacker from attacking the network file system will be the problem of this paper. Based on the research of how to use ASP technology to solve the problem of network file sharing system efficiently, safely and conveniently, a new security protection system of network file system is designed and implemented in this paper. The system is based on the B / S architecture, including ASP technology, authority authentication, network intrusion technology, componentless upload, anti-theft link and other related technologies, to meet the different permissions of users to enter the system through different terminal browsers to obtain the required files. This paper uses Windows XP as the development environment, IIS as the server, ASP as the development language and Access2003 as the database. The interface of the system is designed by ASP, the interface is simple and clean, and has good man-machine interaction. System file sharing is based on HTTP protocol. Security measures include user authentication, encryption of core information, anti-SQL injection measures, componentless upload, anti-theft link design, anti-database download, application of hard disk to protect network file system. The whole system is based on the mature Web environment, which is efficient, safe and convenient to meet the user's needs. It has high research value. This paper focuses on the study of the system's safety protection system. Security measures include authentication and management of authority, encryption of user information, improvement of common intrusion vulnerabilities, design of uploading without components, design of anti-theft link, protection of network files by hard disk, etc. In this paper, many intrusion attack tests are experimented, a large number of system attack and defense data are obtained, the shortcomings of system defense against intrusion attack are analyzed, the improvement measures of system security performance are put forward, and the future work is prospected.
【學(xué)位授予單位】:湖北大學(xué)
【學(xué)位級別】:碩士
【學(xué)位授予年份】:2014
【分類號】:TP393.08
本文編號:2313963
[Abstract]:With the popularity of the Internet and the speed of computer replacement, computers are more and more closely connected with people's lives. In modern society, computers bring people a lot of convenience, such as making people get all kinds of files through the network file sharing system more quickly. As the administrator of the network file sharing system, how to efficiently, safely and conveniently make use of the existing technology to provide the users with secure network file sharing, and to defend the hacker from attacking the network file system will be the problem of this paper. Based on the research of how to use ASP technology to solve the problem of network file sharing system efficiently, safely and conveniently, a new security protection system of network file system is designed and implemented in this paper. The system is based on the B / S architecture, including ASP technology, authority authentication, network intrusion technology, componentless upload, anti-theft link and other related technologies, to meet the different permissions of users to enter the system through different terminal browsers to obtain the required files. This paper uses Windows XP as the development environment, IIS as the server, ASP as the development language and Access2003 as the database. The interface of the system is designed by ASP, the interface is simple and clean, and has good man-machine interaction. System file sharing is based on HTTP protocol. Security measures include user authentication, encryption of core information, anti-SQL injection measures, componentless upload, anti-theft link design, anti-database download, application of hard disk to protect network file system. The whole system is based on the mature Web environment, which is efficient, safe and convenient to meet the user's needs. It has high research value. This paper focuses on the study of the system's safety protection system. Security measures include authentication and management of authority, encryption of user information, improvement of common intrusion vulnerabilities, design of uploading without components, design of anti-theft link, protection of network files by hard disk, etc. In this paper, many intrusion attack tests are experimented, a large number of system attack and defense data are obtained, the shortcomings of system defense against intrusion attack are analyzed, the improvement measures of system security performance are put forward, and the future work is prospected.
【學(xué)位授予單位】:湖北大學(xué)
【學(xué)位級別】:碩士
【學(xué)位授予年份】:2014
【分類號】:TP393.08
【參考文獻(xiàn)】
相關(guān)期刊論文 前10條
1 張建成;李春青;;基于.NET環(huán)境下ADO.NET訪問數(shù)據(jù)庫技術(shù)的研究[J];電腦知識與技術(shù);2009年22期
2 劉帥;;SQL注入攻擊及其防范檢測技術(shù)的研究[J];電腦知識與技術(shù);2009年28期
3 張勝偉;;現(xiàn)代遠(yuǎn)程教育中作業(yè)系統(tǒng)的構(gòu)建[J];電腦知識與技術(shù);2009年32期
4 柳明;楊豐;;基于B/S模式的網(wǎng)絡(luò)考試系統(tǒng)設(shè)計與實(shí)現(xiàn)[J];電腦知識與技術(shù);2009年36期
5 黃瑋;崔寶江;胡正名;;Web應(yīng)用程序客戶端惡意代碼技術(shù)研究與進(jìn)展[J];電信科學(xué);2009年02期
6 李雙遠(yuǎn),趙劍,張立君;防止非法下載ACCESS數(shù)據(jù)庫[J];吉林化工學(xué)院學(xué)報;2005年03期
7 鄭紹輝;周明天;;反盜鏈技術(shù)研究[J];計算機(jī)時代;2008年01期
8 李娟;王海紅;;基于.NET的在線考試系統(tǒng)的設(shè)計與實(shí)現(xiàn)[J];科技信息;2010年03期
9 譚海;湯彬;;基于教學(xué)實(shí)踐本質(zhì)的一體化實(shí)踐教學(xué)體系構(gòu)建與實(shí)施研究[J];計算機(jī)教育;2009年22期
10 袁楷;黃東軍;;流媒體服務(wù)器防盜鏈系統(tǒng)[J];企業(yè)技術(shù)開發(fā);2007年01期
,本文編號:2313963
本文鏈接:http://sikaile.net/guanlilunwen/ydhl/2313963.html
最近更新
教材專著
