Web环境下脚本攻击检测与防御研究

发布时间：2018-03-20 14:02

本文选题：脚本攻击　切入点：恶意代码　出处：《北京邮电大学》2014年硕士论文　论文类型：学位论文

【摘要】：21世纪以来,个人计算机迅速普及,互联网高速发展,这个过程中,病毒、木马、僵尸网络、蠕虫等一直在威胁Internet安全。Web2.0的出现使得黑客实施攻击更为方便。攻击者利用Web页面里边的脚本偷取用户信息、劫持用户会话、破坏用户机器。脚本安全逐渐成为安全领域的热门话题。本文主要研究脚本攻击检测与防御方法。本文提出了一套基于恶意代码特征的Web页面脚本攻击检测防御方案。首先,利用云计算框架Hadoop对网页恶意代码特征进行提取,提高特征提取效率。接着,在提取的网页恶意代码特征的基础上,提出了一种对网页恶意代码特征进行加权处理的方法,提高恶意脚本检测精度。最后,提出了对网页进行三层检测的攻击检测防御系统设计,并进行实验对该系统设计进行了功能和性能验证。实验结果表明,本文提出的Web环境下脚本攻击检测防御系统能够很好的检测Web页面恶意脚本并阻止页面中恶意脚本的执行。
[Abstract]:Since 21th century, personal computers have spread rapidly and the Internet has developed at a high speed. In the process, viruses, Trojans, botnets, Worms have been threatening the security of Internet. Web2.0 has made it more convenient for hackers to attack. Attackers use scripts in Web pages to steal user information and hijack user sessions. The security of scripts has become a hot topic in the field of security. This paper mainly studies the methods of script attack detection and defense. This paper proposes a Web page script attack detection and defense scheme based on malicious code features. Firstly, using cloud computing framework Hadoop to extract malicious code features to improve the efficiency of feature extraction. On the basis of extracting the malicious code features of web pages, a method of weighting the malicious code features of web pages is proposed to improve the accuracy of malicious script detection. Finally, An attack detection and defense system based on three-layer detection of web pages is proposed, and the function and performance of the system are verified by experiments. The experimental results show that, The script attack detection and defense system proposed in this paper can detect the malicious script of Web page and prevent the execution of the malicious script in the Web page.
【学位授予单位】：北京邮电大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP393.08

【参考文献】