| 基于生命周期的应用安全解决方案 |
| |
| 引用本文: | 李晨旸,陈萍,张晓梅.基于生命周期的应用安全解决方案[J].信息安全与通信保密,2010(11):48-50. |
| |
| 作者姓名: | 李晨旸 陈萍 张晓梅 |
| |
| 作者单位: | 北京信息安全测评中心,北京,100101 |
| |
| 摘 要: | 随着Web技术的不断发展,Web技术得到广泛应用,针对Web应用的攻击方法也日新月异。针对Web应用安全防御中出现的防护方法不当等问题,提出了一种基于系统生命周期的Web应用系统安全解决方案。方案在系统的设计、建设、部署和运维中融入了安全设计、安全部署、加固防护、安全测评及应急响应等安全措施,弥补了传统安全防护方案在应用安全防护方面的不足,具有一定的实用价值。
|
| 关 键 词: | Web应用系统 应用安全 系统生命周期 安全措施 |
A Web Application Security Solution Based on System Life Cycle |
| |
| LI Chen-yang,CHEN Ping,ZHANG Xiao-mei.A Web Application Security Solution Based on System Life Cycle[J].China Information Security,2010(11):48-50. |
| |
| Authors: | LI Chen-yang CHEN Ping ZHANG Xiao-mei |
| |
| Affiliation: | (Beijing Information Security Test and Evaluation Center, Beijing 100101, China) |
| |
| Abstract: | To solve the problems in web application security protection, a comprehensive solution based on the life cycle of Web application is proposed, and various Web application security measures are fused in the system design, construction, deployment, operation and maintenance. This solution could remedy the deficiencies in application security of traditional security solutions, and thus is of certain practical value. |
| |
| Keywords: | Web application application security system life cycle security measures |
| 本文献已被 维普 万方数据 等数据库收录! |
|
