Design And Implementation Of Website Security Protection System

With the incessant popularization and application of the network, the amount andscale of websites grows sharply and people can work and live more easily. But it mustbe noticed that events of websites are suffering from attack and webpages are beingtampered occur frequently and too much harmful information exist in websites. It isessential to adopt effective measures and techniques to prevent these problems. In viewof the status of website security, a website information safety protection system whichis based on webpage tamper–proofing and content filtering is designed in this paper.The system can enhance the safety of the website without influencing its usability, andit can prevent from variously inappropriate information being released and browsed, sothe service quality of website and Web application systems is improved.Firstly, status quo and development of website information security safeguardtechniques are analyzed roundly. According to requirements of information securitymanagement and defense in website construction, based on current website securitysafeguard techniques, overall framework of website information safety defense systembased on B/S and C/S mode is put forward. Using distributed architecture the wholesystem is divided into three sub-systems: control server, defense system terminal anduser management console, and thus providing a set of integral solution for websitesecurity management.Then, through the comparison and analysis of current webpage tamper-proofingtechnologies, synthetically adopting file system filter driving and incident triggeredtechnology, webpage tamper-proofing sub-system is designed workflow of the systemis explained. Afterwards, current popular Web text information filtering technologiesare summarized and analyzed. Web Chinese text filtering sub-system based onincremental SVM considering user feedback is designed according to characteristics ofChinese webpage information filtering. This gives the system the ability of enrichingits knowledge database during the work process and so the increasing accuracy offiltering is achieved.Based on above works, the implemented prototype system is tested, includingperformance test and function test. The results indicate that，the system runs stably and function is good. The expected design aim is achieved. Finally, the paper issummarized and future research directions are pointed out.