网站系统安全防护体系建设方案目录一、需求说明..........................................................................................................................2二、网页防篡改解决方案........................................................................................................42.1技术原理....................................................................................................................42.2部署结构....................................................................................................................52.3系统组成....................................................................................................................62.4集群与允余部署.........................................................................................................82.5方案特点....................................................................................................................92.5.1篡改检测和恢复...............................................................................................92.5.2自动发布和同步...............................................................................................9三、WEB应用防护解决方案.................................................................................................113.1当前安全风险分析....................................................................................................113.2防护计划..................................................................................................................123.2.1开发流程中加入安全性验证项目....................................................................123.2.2对网站程序的源代码进行弱点检测................................................................133.2.3导入网页应用程序漏洞列表作为审计项目.....................................................133.2.4部署Web应用防火墙进行防御......................................................................143.3WEB应用防火墙功能..........................................................................................153.3.1集中管控功能.................................................................................................153.3.2防护功能........................................................................................................153.4预期效益..................................................................................................................16四、内容分发网络解决方案..................................................................................................184.1内容分发网络简介....................................................................................................184.2CDN服务功能.....................................................................................................184.3CDN服务特点.....................................................................................................20五、负载均衡解决方案..........................................................................................................215.2广域负载均衡...........................................................................................................235.3关键功能和特点.......................................................................................................24六、应急响应服务体系.......................................................
