The Design And Implementation Of WEB Page Anti-tamper System

With the construction of various types of portals and websites has been gained ground,the security issues of website construction process become increasingly prominent.Notwithstanding it has some security measures,such as firewalls,intrusion detection and other security means to protect the external sites exposed to the Internet.But the systems loopholes emerge,Hackers invade and tampering with the page events have occurred high frequency.How to effectively protect their website security and maintain their public image become a lot of online medias need to face the common problems.Based on the actual project of the enterprise,this paper designs and implements the website tamper resistant system for the characteristics of operators.The system to solve the many problems such as poor user experience,inability to use the page and damage to the company.The system uses real-time monitoring technology,not only provides real-time protection function of the files,but also provide real-time alarm and restore the files were tampered with,to ensure the normal operation of the site.It is a centralized control,user-defined strategy for the protection of the site server on the page file to protect the information security products,can prevent hackers tampered with the page to ensure that the site web security.The detailed work of this paper includes:analyzing the demand of the project according to the functional use case modeling and elaborating each function in detail.The architecture design,function module design,database design and interface design are completed.The detailed design and implementation of the system is completed,including:Backup File Management,Agent Management,Program Directory Monitoring Management,Alarm and Recovery and User Management.Among all of them,the Backup File Management is responsible for storing all files to be protected,the Agent Management is responsible for deploying the sites,the Program Directory Monitoring Management is responsible for deploying the progtams under the site whice choosed before,the Alarm And Recovery is responsible for real-time monitoring and self-recoverying,the User Management is responsible for managenting the system's users.Conducted a system test.The system server based on Spring MVC,Spring,Mybatis,Apache MINA development framework;data processing is mainly dependent on HTTP protocol and JSON data analysis;front-end based on Bootstrap,Apache Shiro development framework.The author fully involving in requirements analysis,architecture design,database design and detailed design of the project,software development and system testing the whole process.The design and implementation of the Web Page Anti-tamper system has been put into use on the lien,I completed the various functions of module is perfect,has achieved the desired goal.