A dynamic defense method for web applications based on semantic collaboration
A dynamic defense, web application technology, applied in the field of network security, can solve problems such as increasing the difficulty of defense, and achieve the effect of increasing security
Active Publication Date: 2020-11-17
BEIJING CHAITIN TECH CO LTD
View PDF1 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
The above technical solutions have certain shortcomings in the offensive and defensive confrontation environment. Since the random address is significantly different from the normal web resource address, the attacker can immediately judge that the system uses a defense method of dynamic resource transformation, so as to adjust the attack strategy in a targeted manner and increase defense difficulty
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0024] A dynamic defense method for Web applications based on semantic collaboration,
[0025] Including the following steps;
[0026] Step 1: Construct the semantic collaboration list of front-end and back-end Web resources.
[0027] The semantic collaboration list is mainly used to deal with dynamic resource addresses and element tags that may change dynamically. For example, with changes in the html protocol, Labels may become Wait.
[0028] The semantic collaboration list clearly expresses the element tags that need to be replaced and the semantic content that may be involved in the dynamic resource address in the list. Among them, the dynamic resource address is a flexible selection of different resource access addresses reserved by the back end of the website for the front end. Although it is dynamic, the dynamic range can be framed, and the semantic collaboration list clearly expresses the dynamic range in the list . The representation method can be in the form o...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention relates to a dynamic defense method of a Web application based on semantic collaboration. According to the dynamic defense method provided by the invention, dynamic conversion is performed on a resource address by using the semantic collaboration technology and the character string randomization technology based on a Markov model, effective dynamic conversion is performed on a staticaddress and a dynamic resource address returned by a server, the converted resource addresses have certain readability, so that it is difficult for an attacker to discern whether the address has undergone dynamic defense processing, thereby improving the defense strength of the Web application. According to the dynamic defense method provided by the invention, a semantic collaboration list is used, so that a dynamic defense system can effectively handle the problem of dynamically generating codes in the resource address. A more covert Web resource address can be obtained by using a characterstring randomization method based on the Markov model, so that it is difficult for the attacker to quickly locate the defense means adopted by a website. By means of the adoption of the semantic collaboration list and the Markov model, the security of a Web application system is effectively improved.
Description
technical field [0001] The invention belongs to the technical field of network security and relates to a dynamic defense method for Web applications based on semantic coordination. Background technique [0002] With the continuous development of web applications, the behavior of attacking web systems through web injection methods such as SQL injection and XSS attacks and stealing data is increasing. The current web application system needs to spend a lot of manpower and material resources for code security audit work. Generally, only the application systems of large companies can achieve high security, while a large number of web application systems developed by small companies often have a certain amount of web security. security breach. To this end, it is necessary to develop a web injection defense system between web applications and users to detect and protect the data flow flowing into and out of web applications, so as to increase security for various applications. A...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/08H04L12/24
CPCH04L41/145H04L63/1441H04L67/02
Inventor 陈海松吴震东李阳政吴春明
Owner BEIJING CHAITIN TECH CO LTD