网站数据完整性检测工具的设计与实现

发布时间：2018-03-17 00:02

本文选题：网站数据完整性　切入点：恶意篡改　出处：《中国海洋大学》2014年硕士论文　论文类型：学位论文

【摘要】：随着互联网的普及与发展，网络平台已逐渐成为各行业对外进行展示、信息沟通最方便快捷的桥梁。政府利用网络平台传递政声，学校利用网络平台推进家庭教育工作，医疗机构利用网络平台提高医保透明度，企业利用网络平台对产品进行推广宣传等等，而网络平台中必不可缺的部分就是构建网站，网站不仅是向公众发布信息的媒体载体，还是让公众了解各行各业的窗口，它就像人的眼睛，通过它可以直接和一个企业的灵魂沟通。但是，网站正面临着遭受黑客攻击篡改的安全威胁，一旦被篡改，将会给人民甚至国家遭受极大的危害，因此，网站数据完整性的保护尤为重要。网站数据完整性检测工具是网站安全防护的重要手段，能及时发现网站是否被攻击。目前，已有的网站数据完整性检测工具主要是网页防篡改工具，不仅效率低，而且大都忽略了DNS劫持的检测，而DNS劫持是近期黑客攻击采用的热门手段之一，并且DNS服务是访问网站的第一步，如果DNS出现故障，正常的访问被解析到错误的服务器地址，网站必然会受到影响。针对上述问题，设计并实现了网站数据完整性检测工具。网站数据完整性检测工具是集网页恶意篡改检测、DNS劫持检测、异常发现检测于一体的检测工具。在网页恶意篡改检测模块，运用了正则表达式提取技术、中文分词技术、TF-IDF加权技术和余弦相似性算法，实现了网页内容的相似性比对，来检测网页内容是否被篡改。DNS劫持检测模块，运用了DNS解析技术，实现了域名到IP地址的映射，并进行IP地址比对，来检测DNS是否被劫持。异常发现检测模块，通过网页提取出的关键词与数据库中的异常词汇比对，实现了网页是否存在异常词汇的检测。检测工具还具有报警的功能，当发现存在异常时，，立即发送邮件给网站管理人员，及时发现问题，减少危害。经测试，使用网站数据完整性检测工具对网站进行安全性检测，提高了检测效率，扩大了适用范围，对网站安全防护水平的提升有积极的推动作用。
[Abstract]:With the popularization and development of the Internet, the network platform has gradually become the most convenient bridge for all industries to display and communicate information. The government uses the network platform to transmit political sound, and schools use the network platform to promote family education. Medical institutions use the network platform to improve the transparency of medical insurance, enterprises use the network platform to promote the products, and so on, and the indispensable part of the network platform is to build a website, which is not only a media carrier to release information to the public. Or let the public know the window of various industries, it is like the human eye, can communicate directly with the soul of an enterprise through it. However, the website is facing the security threat of being hacked and tampered with, once tampered with, Will give people and even the country suffered great harm, therefore, the website data integrity protection is particularly important. Web site data integrity detection tool is an important means of website security protection, can timely find whether the website is attacked. At present, the existing website data integrity detection tool is mainly a tamper-proof tool, which is not only inefficient, but also effective. And most of them ignore the detection of DNS hijacking, and DNS hijacking is one of the popular methods used in recent hacker attacks, and DNS service is the first step to visit a website. If DNS fails, the normal access is resolved to the wrong server address. The website will inevitably be affected. Aiming at the above problems, the paper designs and implements the data integrity checking tool of the website. Web site data integrity detection tool is a web page malicious tampering detection DNS hijacking detection, anomaly detection detection in one detection tool. In the web page malicious tamper detection module, the use of regular expression extraction technology, The Chinese word segmentation technology includes TF-IDF weighted technology and cosine similarity algorithm, which realizes the similarity comparison of web content, to detect whether the web content is tampered with. DNS hijacking detection module. The mapping of domain name to IP address is realized by using DNS parsing technology. And IP address comparison to detect whether DNS is hijacked. Anomaly detection module, the key words extracted from the web page are compared with the abnormal words in the database. The detection tool also has the function of alarm. When there is an anomaly, it sends an email to the website administrator immediately to discover the problem and reduce the harm. After testing, using the website data integrity inspection tool to carry on the security inspection to the website, has improved the detection efficiency, expanded the scope of application, has the positive promotion function to the website security protection level enhancement.
【学位授予单位】：中国海洋大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP393.092

【参考文献】