The Secure Mechanism And Implementation Technics Of A Web Server

The WWW service is the most popular service in Internet application. Web server is the core of the WWW service, and its security is the most important factor which restricts the application of the WWW service in our country, especially in these fields such as e-government and e-business.Based on the technology of SSL and public key encryption, we put forward and implement the secure web server which is based on PKI infrastructure. The secure web server can not only provide common web service like a usual web server, but also provide secure secretive service. This paper implements the security modules of the secure web server.The main contributions of the paper are as follows:1. storage encryption technicIt can encrypt the information on server side with different algorithm and strength. Even if .the hackers intrude the server, they can only get the ciphertext and can not get the plaintext out from it;2. pages originally identified technicIt can identify web pages, by which we can assure the pages' originality, integrity and undeniableness, and prevent hackers from modifying pages illegally;3. access control mechanism according access rightsIt can classify web pages by their importance and confidentiality, and give web users proper rights. A valid user can access these pages whoseclassifications are consitent with user's right. User's access which is over user's right is forbidden;4. log system based on watermark technologyIt can add watermark in log record, and protect log record's originality and unchangeableness. It provides a powerful and undeniable proof for log audit;5. manager tool for secure web server based on SSLIt has designed and realized a flexible, convenient manager tool based on SSL, which facilitates the configuration and management work of the secure web server.On April 25 2003, "a Multifunction Secure Web Server based on GodSon_l and Client SSL Proxy" passed the appraisement of Sichuan Science and Technology Department. Experts of the appraisal council think: "The multifunction secure web server is the first web server which is integrated with intelligent firewall and disaster recovery techniques based on Internet in China, and its technology is the first rank in China. With the secure web server, one can construct a website with high reliability and high security on Internet, and reduce the costs. The secure web server has greate economic benefit and a good prospect of application.