摘要
近几年来,针对高校二级网站的入侵、挂马、黑链等网络安全事件呈上升趋势。此类安全威胁是以应用层渗透为主,结合传统层面攻击扩大攻击范围。分类分析安全威胁特点,结合架构优化、代码审计、安全渗透测试等防护手段,建立协同工作、相互支撑的安全防护系统才能有效的保证高校二级网站信息安全。
Recent years, the second-level website security incidents show an increasing tendency in colleges and universities. This kind of threats expands their attack range mainly through penetrating application layer, combining traditional layer attack. Aiming to guarantee the second-level website security in colleges and universities, this paper, through classification analysis on the characteristics of security threats, tries to build a collaborative work and co-supporting security defense system with the help of architecture optimization, code audit and security penetration test.
关键词
高校
二级网站
安全
防护策略
colleges and universities
second-level website
security
protection strategies
