摘要
目前,从公司企业,政府机关,到个人信息发布,采用网站的形式成本低而且非常方便。但是网站被篡改的现象也经常发生,作者所在的校园网就会经常遇到页面被篡改,如在正常页面中加入不法链接等篡改事件发生。通过国家互联网应急中心发布的网站篡改资料以及对一些门户网站的篡改检测,发现网页被篡改现象依旧普遍存在,这在近年的学术研究上是很大的热点。在实际经济活动中,各种防篡改产品层出不穷,但也存在价格千差万别,产品安全性参差不齐的现象。通过对现有热门产品的使用研究,对现有研究论文成果的总结,归纳出网站防篡改中应该关注的三方面:对网站文件的监控,对篡改的恢复以及告警,同时提出对策和建议。
Currently, from companies, government agencies, to personal publishing, using the Web site is low cost and very convenient.But the site tampered phenomenon occurs frequently, for example, webpage has been tampered in the normal page by adding hyperlinks to other criminal page.Released by the CNCERT/CC as well as some tamper detection to some sites, we found tampering phenomenon remains widespread, and this is a hot topic in academic research. In real economic activity, there are various anti-tamper products, but there are vastly different prices, also the product safety is not the same. After using some popular products and summarizing some researching papers, we summarize website tamper should concern three areas: the site file monitoring, recovery and tampering alarm, and put forward countermeasures and suggestions.
出处
《网络安全技术与应用》
2014年第2期115-116,共2页
Network Security Technology & Application
关键词
网页防篡改
监控系统
恢复
告警
Webpage tamper-proof
Spying System
Tamper Recovery
Alarm
