The Design And Implementation Of Web Application Firewall For E-banking

With the rapid development of the Internet e-commerce, the security issues of online banking system are the most important in transaction. Now, the most security problem is WEB application security. Data filtering in the application layer is the most effective method to solve the WEB application security problem. The WEB Application Firewall, which can achieve this function, can protect the web application. This thesis analyzes and implements WEB Application Firewall for e-banking. The main contents of this thesis include:Firstly, this thesis introduces the status and the main problem of WEB Application Firewall in the world. Then, the prevalent WEB application layer attack and defense skills are introduced. These attacks include:Injection, cookie tampering, Cross-Site Scripting, DDOS for WEB Application, Phishing. And the protection theory is described.Secondly, analysis online banking network and system architecture, and find out the security problem of the online banking. Then, a WEB Application Firewall is implemented. It can follow application automatically. The WEB Application Firewall include 4 modules, which are preprocessing module, protection module, management module and log module. In preprocessing module, SSL decryption, HTTP decoding and Anti-Phishing are designed. Protection module is the key module, which include: Filter by whitelist and blacklist, Filter of HTTP protocol, Filter of WEB attack signature, Dynamics profile, Session Management, Anti-data leakage. Management module can configure and check all the policy of the WEB Application Firewall. Log module records the information about system and attack information, and manage the log files which include query, archiving, deletion.At last, use WebInspect to simulate attacks of Injection, cookie tampering, Cross-Site Scripting, use ApacheBench to DDOS web server, and do test to phishing. The result shows that WEB Application Firewall can protect web server against the main WEB application layer attacks. It reaches the goal of protecting e-banking.The Web Application Firewall has protected some small e-banking system. It has helped the e-banking system to improve their protection in WEB application layer.