摘要
虽然已经有人提出了一些电子商务系统安全问题的解决方案,有些安全问题仍然需要关注:如:拒绝服务攻击、持续入侵和缺乏安全技能。信息安全系统专家从黑客角度考虑信息安全问题具有重要的意义。首先介绍了信息安全系统的组合模型,并提出了影响基于Web的电子商务系统的安全问题,其中主要从网络和系统安全等角度进行讨论。提出了针对基于Web电子商务系统的安全方莫决的设计方法,并给出了解决有关安全问题的方法。对一个自行开发的黑客入侵防范系统进行案例研究,并改进了组合模型,试图设计一个安全电子商务系统的原型。
Although many soluhons for the security issues of the electronic commerce systems have been proposed, there will always be awealth of security issues that will need attention, for example, denial-of service attacks, continued hacking and skills shortages. The insight ofthe information security professional will continue to be of great value, with the ability to think like a hacker.Beginning with a brief introduction of the combination model for the Internet information security system, this paper addresses the mainissues that may affect a Web-based electronic conunerce system, mainly in term of network and system aspects. Some design methodologiesfor the security module of the Web-based electfonic commerce system are then described that may effechvely solve these various issues. Thispaper also provides an overview of a hacker preventing software that was developed by us and may be extended to the prototype for morecomplex secure electronic commerce systems.
出处
《计算机工程》
CAS
CSCD
北大核心
1999年第S1期147-151,共5页
Computer Engineering
