网页防篡改系统的设计与研究

The Design and Research of Webpage Tamper-proof System

为了防止网页被恶意篡改,保证网页安全可靠,通过研究分析现有的三种网页防篡改技术及网页篡改相关技术设计,提出了一种基于Linux的适用于高负载、高并发网站的页面防篡改系统方案。该防篡改系统在平时采用时间轮询技术,当发生篡改事件或篡改事件升级后,才唤醒核心内嵌模块和内核过滤驱动模块两个实时检测模块。这样,在节省系统资源的同时保障了系统安全,在资源与安全性两者之间达到了一个很好的平衡。

In order to prevent the webpage from being maliciously tampered, guarantee the safe and reliable webpage, through research and analysis of the existing three webpage tamper-proof technologies and relevant technical design, it puts forw ard a kind of webpage tamper-proof system based on Linux which is suitable for high load, high concurrency website. The tamper-proof system adopts polling technique, when tampering incident occurs or the event upgrades, it awakens two real-time detection modules of the core em bedded module and kernel filter driver module. So, while saving system resources it also ensures the safety of the system , and achieves a good balance between resources and security.