摘要
随着WEB应用程序在更广泛范围的使用及WEB工程概念的提出,Web安全的测试就成为一项重要的工作。而Internet和Web媒体的不可预见性使得测试变得困难,必须为测试复杂的基于Web的系统研究新的方法和技术。文章在分析WEB系统的布署环境、应用程序、数据库和系统容错等方面存在安全漏洞的基础上,对Web安全测试的要点和方法进行了探讨,并对测试中可能发现的问题给出了解决方法。
With wide use of Web application program and the proposal of Web engineering concept, security test has become a very important work. However, because of unpredictability of Internet and Web this test is quite difficulty and it is necessary to develop some new technologies and methods based on the Web media, testing web system. This paper analyzes security holes existing in the environment, application program, database,fault-tolerant system of web system, investigates the key points and methods for testing network security, and proposes the correspondence countermeasures.
出处
《通信技术》
2008年第6期29-32,共4页
Communications Technology
关键词
WEB
安全
测试
对策
Web
security
test
countermeasure