摘要
随着Web应用的普及,其安全面临着前所未有的挑战。针对Windows平台中广泛使用的IIS服务器,利用ISAPI在Web应用层设计并实现安全防护系统,可对常见的Web攻击,如SQL注入、XSS攻击、Cookies攻击进行防御。实验表明,该安全防护系统可以在一定程度上保护网站的应用层安全,有效提高网站安全性。
With the development of Internet, Web technology is widely deployed in nowadays information systems, the application and popularization of Web make Web security is confronted with hitherto unknown challenge. Web security protection system for the IIS server widely used in Windows platform, employs ISAPI in the application layer to design and implement. It can defense common web attacks, such as SQL injection, XSS attack, and Cookies attack. The results indicated that it can protect the web application layer security, and improve site security as well.
出处
《软件导刊》
2014年第8期134-136,共3页
Software Guide
基金
河南省科技计划项目(142300410108)
河南省教育厅科学技术研究重点项目(14A520056)
南阳师范学院校级项目(QN2013047)
