the traditional Web security detection methods act on the input and output of the program
which can not prevent malicious code entering the program after being distorted and confused
and it is difficult to meet the new requirements of Web application security protection.Based on the in-depth analysis of the risk of traditional data flow monitoring methods
combined with the technical characteristics of rasp
a Web security detection method based on rasp was proposed.The rasp probe was embedded in the parameters of authority discrimination function
system command execution function and database operation function in Web application
and the change of data flow was detected in real-time at the code interpreter level.This method was implemented based on Java language.It was proved in the laboratory that this method is better than the traditional Web security detection method in accuracy and detection time.Finally
the deployment and application scenarios of this method were analyzed and proposed.
关键词
Keywords
references
Global runtime application self-protection (RASP) security market to grow at a CAGR of 49.68% during the period 2018-2022 [Z ] . 2018 .
QIU R N , HU A Q , PENG G J , et al . General detection and location scheme of Java Web framework vulnerabilities based on RASP technology [J ] . Journal of Wuhan University (Science Edition) , 2020 , 66 ( 3 ): 285 - 296 .
BELLESSORT R , RUELLAN H , OUEDRAOGO N . Method and device for safely executing a Web application in a Web runtime environment:GB2554697 [P ] .2018-04-11.
CHEN W , CHEN L R , XU X T , et al . Attack and defense technology based on Web application system vulnerability [J ] . Telecommunications Science , 2017 , 33 ( Z1 ): 108 - 116 .
YIN Z X , LI Z F , CAO Y . A Web application runtime application self-protection scheme against script injection attacks [P ] . 2018
LIN F , XU L J , CHEN X H , et al . A Webshell detection method based on multi view feature fusion [J ] . Telecommunications Science , 2020 , 36 ( 6 ): 125 - 132 .