| Along with popularity of Internet technology and the development of network platform service application, people are getting closer to the Internet. Web platform with flexible, efficient, low-cost and other information advantage, has greatly improved the efficiency of the relevant departments, promote the actual business of in-depth development, and strengthen exchanges and interactive services between the sector and the outside world. Our country's computer industry has been developed for more than a decade. National production management systems, are built on the architecture of the Internet, from the country's national defense, government offices, financial systems, network games, Internet banking, network transactions,etc., can not be separated from the network. Today, the Internet has become indispensable in people's lives. How to effectively ensure the stability and security of the network running is a very important issue, and it is a headache for network managers at all levels. Now, the network security situation is very worrying. The statistics figure indicats that, in the last few years,the various offenses using the computer increased by every year 200% speed. Along with the unceasing deepening relation between network and people,various network threat appears quietly by many kinds of new shapes,is not for the technical program resistance and network joke, but they are the fight for interest ,malicious control and illegal stealing. For the interested drivers,lack of the law management in the network and unceasing inflation of the black economy chain, the network security faced the unprecedented threat. While the web site which contains important business applications is the primary objective that hacker attacks. The people feel worried and helpless in the face of various camouflage ,destructive threat of web site.People don't recognize threat ,don't know what to do and don't understand the management about system safety.Our system is unsafe because various threat seize every opportunity to do evil, even reached the rampant situation. We should strengthen the system security to improve safety consciousness and defense the site. In this paper, it is the purpose and significance.Through careful analysis of network security situation,this paper put forward the concept and characteristics of network security and points out the main safety problems: unauthorized access sites, information security management, network viruses spread, security systems management. In the new situation, the network threat is different from the past: the unceasing application of new hacker technology, using a variety of intelligent tools to enhance the attack, the excellent camouflage technology and the ambush technology, social engineering technique of deception,the hoodlum software which close the anti-virus software run amuck everywhere and so on. These means have better power and efficiency of attack. We have to adopt higher security technology, more stringent safety management mechanism, more stringent security awareness in order to deal with these threats and risks.Through the situation analysis about network attack, this paper points out the attack features about website under the new circumstances: vulnerability to attack as a primary goal,obvious benefit drivers of website attack, "industrialized" characteristics of the invasion which have intelligent hacker tools and automatic attack.As these attack features,this paper gives the corresponding practical way to do with attack,and points out the malicious threats which was ignored easily.We are more sensitive for the latest developments of network threat,more able to reduce risk,and increase the safety factor.Through the study of attack methods and characteristics about website threat, I put forward the defence methods and the problems which website safe construction should pay attention to.Through the study of several mainstream safety technology about network safety area(for example , firewall technology, NAT technology, intrusion detection technology ,etc.),this paper analyses and compares with their features and advantage,gives the difference and contact of between them, and in particular pays attention to the classification and the scope of application. These mainstream safety technology is an important basis for building a website security defense system. In addition,through analysing safety technology, characteristics about website itself, various forms of new threat and safety precaution in fact, the author gives the system defense technology which suit to the safety defense of website, including: computer virus prevention, vulnerability scanning system,system defense for malicious software and special device protection. These good system defense technology are very useful for network administrators.In this paper, the author describes some of the common website attacks and gives the necessary means to guard. With limited spce,the author offers only 3 cited influential website attacks: database SQL injection attacks, DoS attacks, ARP agreement deceit attack.These attacks are more difficult to prevent because they have much used Internet's agreement flaw and the website interactive convenience.Through understanding for these attacks,some necessary defense methods can prevent harm from network attacks.By studying the website attacks,we can find the system deficiencies,and take measures to improve the system's safety.In this paper,through studying on above website safety technology,the author uses security policy of integration a variety of security technology and build a website security defense system model and combined with my own practical work experience in the management of the site. The model is applied to Anshan Local Taxation Bureau's open-door website construction. Each safety technology has its own features and the scope of application. For many functions department, they need a safety defense system which has a comprehensive multi-level multi-angle performance and low cost. After all these department's website construction is the need to take into account the cost of inputs and practical performance. In this paper,the author analyses through the actual needs of Anshan Local Taxation Bureau,using a variety of website security technology,and combines them with each other to build a multi-level multi-angle safety defense system of Web site.Here the author expounds the firewall project, intrusion detection project, anti-virus and vulnerability scanning project,homepage against distortion project and server self-protection project.According to the requirements of practical business management,the author gives the specific site safety management measures. In the design of the defense system,not noly emphasize the technical requirements,pay more attention to site safety management. In addition,thinking of the enhanced function about website and service expansion of Anshan Local Taxation Bureau, correspondingly, we need to enhance the website security ,this paper gives the further improvements and can meet the next step.The design of Web site security defense system takes into account a variety of security technology and performance, stressed the overall effect of the defense and technology integration between each other.This design method suit to the comprehensive security defense about Web site. Simultaneously this defense system in Anshan Local Taxation Bureau has a very good results, has resisted the attacks of hackers and other malicious destruction effectively,and strengthens the security of the website management and maintenance,so that it can improve website safety and stability.It has a wide range of applications. |
PDF Full Text Request