Webpage tamper-proofing device and method based on access control and directory protection

A tamper-proof and directory technology, applied in the field of network security, can solve problems such as security risks, and achieve the effect of ensuring security, preventing tampering, and ensuring security.

Inactive Publication Date: 2013-08-07
ANHUI HIGHGUARD NETWORKS TECH
View PDF3 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In order to solve the potential safety hazards in the above-mentioned practical applications, the purpose of the present invention is to provide a webpage anti-tampering device based on access control and directory protection

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Webpage tamper-proofing device and method based on access control and directory protection
  • Webpage tamper-proofing device and method based on access control and directory protection
  • Webpage tamper-proofing device and method based on access control and directory protection

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0046] Such as figure 1 , figure 2 As shown, a webpage anti-tampering device based on access control and directory protection includes a client 1 and a server 3, and the client 1 is interactively connected with the server 3 through a security gateway device 2; the server 3 is composed of The working end server 3-1 for providing Web services to the client through the security gateway device is composed of an interactive connection with the protection end server 3-2 for receiving information, sending operation instructions and updating system files; the working end server 3 -1 is interactively connected with the client 1 through the security gateway device 2; the working server 3-1 and the protection server 3-2 are equipped with a directory protection service system 4, and the working server 3-1 and the protection server 3-2 Perform an interactive connection through the directory protection service system 4 . The directory protection service system 4 includes a monitoring mod...

Embodiment 2

[0048] A webpage anti-tampering method based on access control and directory protection, comprising the following steps:

[0049] (1) Use the security gateway device between the client and the server to determine the user's access rights, and at the same time encrypt the data during network transmission;

[0050] (2) The working-end server monitors the changes of directories or files in its operating system, and first judges whether the protection-end server actively notified it. If so, the working-end server executes the file for synchronous update; Send the changed directory or file information to the protection server;

[0051] (3) The protection server analyzes the file referred to by the received message by a hash table fast search algorithm, compares its hash value with the file hash value sent by the working server, and if they are the same, executes the file operation; if different, it is determined that the file is illegally tampered with, and the result is sent to t...

Embodiment 3

[0054] Such as image 3 As shown, the specific working process of the webpage anti-tampering device is to first judge whether it is the protection end after the first monitoring module 4-11 of the directory protection service system 4 inside the working end server 3-1 monitors that there is a directory or file change. If the server actively notifies, if not, execute the anti-tampering process:

[0055] (1) The working server 3-1 sends the changed directory or file information to the protection server 3-2, and notifies the first communication module 4-13 through the first implementation module 4-12; the first communication module 4-13 After registering the message, the message is sent to the second communication module 4-23 of the protection server 3-2;

[0056] (2) After the second communication module 4-23 receives the message, it forwards the message to the second implementation module 4-22; the second implementation module 4-22 analyzes the file referred to in the received...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a webpage tamper-proofing device and a webpage tamper-proofing method based on access control and directory protection. The webpage tamper-proofing device comprises a client end and a service end, wherein security gateway equipment is arranged between the client end and the service end, the service end comprises a work end server and a protecting end server, the work end server and the protecting end server are connected in an interactive manner, the work end server is communicated with the client end, and directory protection service systems are respectively arranged inside the work end server and the protecting end server. The webpage tamper-proofing device and the webpage tamper-proofing method comprise two parts that 1, the access control is realized through the security gateway equipment, an internal website and an external website are separated, the access authority of users is determined, and the users are prevented from illegally accessing and modifying application system and data; and 2, the directory protection function is realized through the directory protection service systems, the real-time deletion and recovery is realized, and the real reliability of files is ensured.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a webpage anti-tampering device and method. [0002] Background technique [0003] With the widespread use of the Internet, websites have become a platform for various information releases and comprehensive applications, which has also spawned a number of malicious attacks, such as tampering with web pages, planting viruses, and stealing information and data. Especially for some key functional websites, such as government websites, portal websites, schools, and large financial, securities and other corporate websites, the information on these websites must be authoritative and accurate. However, the complexity and diversity of various web application systems lead to endless system loopholes, leading to attacks that tamper with web pages and publish false and reactionary information, directly damaging the image of the government, and even damage the reputation or propert...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/32H04L29/06
Inventor 郑朝晖
Owner ANHUI HIGHGUARD NETWORKS TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap