网站系统安全防护体系建设方案目录一、需求说明............................................................2二、网页防篡改解决方案..................................................42.1 技术原理.........................................................42。2 部署结构........................................................52.3 系统组成.........................................................62。4 集群与允余部署..................................................82.5 方案特点.........................................................92。5.1 篡改检测和恢复............................................92.5.2 自动发布和同步.............................................9三、WEB 应用防护解决方案................................................113.1 当前安全风险分析................................................113.2 防护计划........................................................123.2。1 开发流程中加入安全性验证项目.............................123。2。2 对网站程序的源代码进行弱点检测..........................133.2.3 导入网页应用程序漏洞列表作为审计项目......................133.2.4 部署 Web 应用防火墙进行防备................................143.3WEB 应用防火墙功能.............................................153.3。1 集中管控功能.............................................153.3。2 防护功能.................................................153。4 预期效益.......................................................16四、内容分发网络解决方案...............................................184.1 内容分发网络简介................................................184。2 CDN 服务功能...................................................184。3 CDN 服务特点...................................................20五、负载均衡解决方案...................................................215。2 广域负载均衡...................................................235。3 关键功能和特点.................................................24六、应急响应服务体系................................................
