| With the rapid development of the Internet, especially with the arrival of the Web2.0era, there are a large number of Web applications emerging on the Internet for people to use. Many government agencies, enterprises and even individual groups have established their own websites, and whether people in work or life and other aspects are almost cannot do without the websites. But these sites’ safety are uneven, a lot of websites have different safety risks, this will give the attackers opened a door, when they use these loopholes they can easily tamper the content and data on the websites, and post malicious information bringing the serious security hidden danger to the society and country. In recent years, the annual number of tampering with websites and severity are in constant increase,the attackers can make a lots of tamper attacks bypassing traditional safety equipment protection through application layer attack,so it’s very necessary to study the Webpage anti-tamper system with the appliacation layer protection capability.In this paper, through research and analysis of the attacker’s modification way to Webpage files and analyse the function and performance of anti-tamper system, it proposed a anti-tamper system based on the combination of session and file detecting technologies, the full text mainly has carried on the overall outline design and module detailed design for the system, and researched to the evalution of the system, and designed a evaluation model and its’method.This paper has mainly carried out the work from the following aspects:1.It has carried on the investigation analysis to Webpage anti-tamper system. It mainly includes the system’s appearance background and significance; the typical technologies’ development and induction; studying on the attack and protection ways of the websites.2. It has made some outline designs for the system, mainly from the system’s workflow and the overall system’s architecture to the system’s functions and performance requirements.3. This paper has also given the detailed designs for the anti-tamper system’s session detecting module, file protecting module and other modules. In session detecting module, it’s mainly based on the ISAPI filter technology to capture the users’request data. And it has mainly designed the protection strategy based on classification, added graded-loading strategy based on the protection object and self-learning and optimization functions. At the same time, the system also added the ability to against batch session attacks. Then, the file protection module mainly uses the document protection technology based on file system filter driver for the protection of the page files. The module uses the pre-block for the files’security and it has added output detection for the two-dimensional code files, preventing threaten of users’mobile devices by tampered two-dimensional code. In some other modules, it mainly has carried on the design of resource occupancy monitoring, logs and database table parts.4. This paper has made researches on the anti-tamper system’s evaluation. It has presented a functional and performance assessment model and its corresponding quantitative scoring criteria for evaluation of the anti-tamper system, the model has tested the system by the five main aspects of quantitative evaluation. In the model it has taken into account the global and local factors that influence the evaluation, and the performance evaluation part of this model has based on the Avalanche3100instrument. At the end it has made the evaluation and quantization score for the anti-tamper system.In this paper, through the research and analysis it has designed a anti-tamper system with more comprehensive protection abilities, and designed the strategy of the classification and added more features for the system. At the same time, it has also studied on the system’s evaluation, put forward the system’s evaluation model and quantitative criteria. These will make the assessment more accurate than the qualitative evaluation. |
PDF Full Text Request