Research And Implementation Of Mobile Target Defense Technology Based On Web Application

With the advancement of computer technology,network services represented by social networks and e-commerce are developing rapidly and gradually changing people's lives in a profound and subtle way,and even affecting the progress of social development as a whole.However,due to the nature of interconnection,sharing and openness of the Internet,this has to some extent brought inherent disadvantages to network security.Coupled with the inherent vulnerabilities and management weaknesses in the network system,unsafe Web services incidents happened frequently and the network security situation is becoming more and more serious.Although the application of traditional security technology improves the security of network services,since the research of these security measures is oriented to static networks and services,once the information configuration is set,it can't be dynamically modified,greatly reducing the original security.In this paper,for the active defense and security of Web services,this paper focuses on the mobile target defense technology based on Web Services.Typically,a Web attack begins with identifying an active IP address in the target network and then spying on the Web server information for the target exploits information of the Web site.Therefore,against the methods of attacking,combined with the idea of moving target defense technology,this paper proposes OF-WRFRM layered mobile target defense model based on OF-RHM.By adopting a combination of network response fingerprint information hopping and IP address hopping,Network address life cycle and network response fingerprint information changes,in order to hinder the attackers to obtain effective Web service information,thereby decreasing the attackers' ability to successfully exploit the network service vulnerability.At the same time,considering that the hacker scan attack often causes the change of the network traffic,this paper uses the Hurst value to estimate the network traffic anomalies and therefore to determine the hopping frequency,which enables the model to adjust the hopping ability according to the network conditions and to some extent,it can further increases the attack difficulty,thus enhancing the network's dynamic defensive capabilities.Finally,based on the above mobile target defense model,this paper designs and implements a mobile-based target defense system based on network services,and conducts functional test and analysis to prove that the scheme and system are feasible and effective.