摘要
提出基于记忆的关键信息基础设施安全检测技术,针对传统的入侵检测技术(IDS)、Web应用防火墙(WAF)技术在Web攻击检测方面的局限性,通过对Web应用攻击周期3个过程的全面分析理解,基于攻击链技术,可以对Web数据进行双向分析即时数据及历史数据,检测各种碎片化、持续性的攻击手段,并且能在黑客利用攻击时,同步感知各种漏洞,实时了解和掌握网络风险状况.
A key information infrastructure security detection technology was proposed based on“memory”to overcome the limitations of the traditional IDS(intrusion detection technology)and WAF(web application firewall)technology in Web attack detection,in this paper.Analyzing comprehensively the three processes of the Web application attack cycle,an attack chain technology based method was used to be able to analyze the real-time data and historical data of Web data bidirectionally,detect various fragmented and persistent attack means,and simultaneously perceive all kinds of vulnerabilities when hackers use attacks,so as to understand and grasp the status of network risk in real time.
作者
李娟
崔甲
施蕾
LI Juan;CUI Jia;SHI Lei(China Information Technology Security Evaluation Center,Beijing 100085,China)
出处
《北京理工大学学报》
EI
CAS
CSCD
北大核心
2019年第9期987-990,共4页
Transactions of Beijing Institute of Technology
基金
自然科学联合基金(U173620014)
关键词
Web应用攻击周期
攻击链
双向分析
攻击行为判定
Web application attack cycle
attack chain
bidirectional analysis
attack behavior determination
