基于Web的软件在应用中,由于Web结构的问题安全问题越来越严峻。文章对基于Web的系统结构,从安全角度分析了常见的系统问题,主要针对Web平台的认证、授权、加密及管理等方面的设置环节和常见Web攻击的场景及攻击方式对建立Web安全防御机制的需要,通过特征匹配和分块检索技术对系统进行实时监测,提供信息过滤的技术保护。文章提出了采用分片检索技术设计Web防火墙的方式和运用Simhash算法获取报文特征来提升网络防御能力。经过对Web防火墙的设计与分析,以有效的安全手段阻止了危险的侵害,并且最终通过实验证明了文章设计的安全结构的合理性和可操作性。%Security problem of Web software is more and more serious because of Web structure in its application. This paper analyzed common problems of Web system from the point of view of security. It established security defense mechanism towards Web platform authentication, authorization, encryption and management,carried out real-time monitoring through feature matching and block retrieval technology, providing technique protection for information ifltering. Concretely,the method of designing the Web firewall by using the slice retrieval technique and the use of the Simhash algorithm to obtain the message feature to improve the network defense capability were adopted. Through the design and analysis of the Web ifrewall, danger of infringement can be prevented effectively and finally proved rationality and operability of security structure designed in this paper.
展开▼
