Research On Webpage Real-time Anti-tamper System

With the high-speed development of Internet, the website has become the main platform for information release by governments, enterprises, colleges and universities. However the Internet is exposed to a relatively open environment, it provides convenient service for people, at the same time it is easy to become a target hacker attacks and destroys. Due to the inherent development characteristics of web application system, many Web applications exemplifies vulnerabilities, viruses, Trojans and malicious codes are emerged. Hackers wantonly tamper with the information on the website by exploiting vulnerabilities, resulting in great social impact and economic losses. To protect web site content from being tampered, make a prompt automatic recovery, improve the security and integrity of website information and reduce the losses and the influence caused by tampered pages, this thesis proposes a set of solutions for web pages in real time anti-tamper system.The thesis studies a variety of principles of webpage anti-tamper software, as well as the related technologies of webpage anti-tamper, including time polling technology, core embedded technology, file filter driver technology and event trigger technology, etc, and then compares the advantages and disadvantages of various technologies from the aspects of perfonnance, efficiency, security and so on. Finally time polling technology and core embedded technology are chosen as the direction of the research and implementation of this thesis.The webpage real-time anti-tamper solution put forward in this thesis includes polling scan module and real-time detection module. The system is divided into monitoring end and management end, first digital watermark generated from each web page file through management end is stored in the management end of the web server, web page file and watermark file are synchronized to the specified location by the monitoring end through file synchronization replication system. Polling scanning module, after system start, carries out the regularly scan comparison on the web page file, meanwhile core embedded module verifies every access request. When finding digital watermark and the original watermark value does not match, the verification is not passed, at the same time the monitoring end sends alerts to the management end and automatically recover the tampered web page, in order to achieve the purpose of webpage real-time anti-tamper.This thesis articulates the system’s technology platform, use cases, architecture, system processes and systems in exquisite detail. System uses a cross-platform technology to make it run under Windows and Linux platforms, passing functional and performance test to meet the design requirements, and ultimately timely discover tampering behavior and make an automatic recovery so that the application site under safe protection.