Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

WEB dynamic security defense method and system

A dynamic security and dynamic coding technology, applied in the field of information security, can solve the problems of application system security and operation dilemma, performance degradation, zero-day attack, etc., and achieve the effect of increasing the difficulty of attack implementation, strengthening the anti-attack ability, and improving security

Inactive Publication Date: 2019-10-25
浙江智贝信息科技有限公司
View PDF5 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] At present, WEB application security is often protected by application firewalls or intrusion prevention devices. These devices use traditional rule-based defense methods, which cannot achieve complete defense against vulnerabilities. On the one hand, there is a lack of effective defense methods for unknown defects and threats. The situation is completely passive, unable to actively defend against emerging vulnerabilities and threats. If the relevant patches are not timely, it will easily cause the risk of "zero-day attack"
On the other hand, when the security rules of the traditional application firewall (WAF) are fully enabled, the performance drops seriously, and even crashes occur. In reality, the related vulnerabilities of the application system will continue to be exposed and accumulated over time. It is inevitable that the rule base of traditional defense products will continue to increase and expand. Considering the performance and feasibility factors, the maintenance of the application system will fall into a dilemma between security and operation.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • WEB dynamic security defense method and system
  • WEB dynamic security defense method and system
  • WEB dynamic security defense method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] The following description serves to disclose the present invention to enable those skilled in the art to carry out the present invention. The preferred embodiments described below are only examples, and those skilled in the art can devise other obvious variations. The basic principles of the present invention defined in the following description can be applied to other embodiments, variations, improvements, equivalents and other technical solutions without departing from the spirit and scope of the present invention.

[0028] Depend on Figure 4 It can be known that a WEB dynamic security defense system includes: WEB reverse proxy 20 and security plug-in 31, wherein said WEB reverse proxy 20 includes WEB proxy 22 and security encoding module 21, wherein WEB proxy 22 is based on the request of WEB terminal 10 Obtain resources from the WEB application server at the back end, and forward the obtained resources to the WEB terminal 10; wherein the security coding module 21 ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a WEB dynamic security defense method and system. The method is based on a moving target defense technical thought. The invention provides an active dynamic defense mechanism for a WEB service system. When the protected WEB application service system is not attacked, the service entry or the resource address is actively transformed, so that the information of the backgroundof the server is effectively hidden and protected, the dynamics and uncertainty of the attacked surface of the system are realized in a randomized dynamic coding technical mode, the difficulty of network attack implementation is improved, and the anti-attack capability of the WEB application service system is effectively enhanced.

Description

technical field [0001] The invention relates to the field of information security, in particular to a WEB dynamic security defense method and system. Background technique [0002] The importance of information security has risen to the level of national strategy. Although traditional information security equipment vendors and service providers provide many solutions, national laws and regulations and related standards also stipulate strict security management systems, but information security problems still cannot be eliminated. For example, incidents of anti-tampering of webpages, incidents of hanging horses on websites, and incidents of website data encryption and extortion occur from time to time and cause economic losses and adverse social impacts. [0003] Analyzing the current situation of network security, the reason for the "easy to attack but difficult to defend" situation in the field of information security is mainly due to the "short board" in the traditional WE...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/0236H04L63/0281H04L63/1416H04L63/1441
Inventor 陈兴军周正达田婷曹耀和
Owner 浙江智贝信息科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products