网站系统安全防护体系建设方案目录一、需求说明..........................................................................................................................3二、网页防篡改解决方案........................................................................................................52。1技术原理.................................................................................................................52.2部署结构...................................................................................................................62.3系统组成...................................................................................................................62.4集群与允余部署........................................................................................................82。5方案特点.................................................................................................................92。5。1篡改检测和恢复.........................................................................................92.5.2自动发布和同步..............................................................................................9三、WEB应用防护解决方案.................................................................................................113。1当前安全风险分析.................................................................................................113.2防护计划.................................................................................................................123。2。1开发流程中加入安全性验证项目.............................................................123。2。2对网站程序的源代码进行弱点检测..........................................................123。2.3导入网页应用程序漏洞列表作为审计项目.................................................133.2。4部署Web应用防火墙进行防御..................................................................143.3WEB应用防火墙功能.........................................................................................153.3.1集中管控功能................................................................................................153.3.2防护功能.......................................................................................................15错误!未定义“自动图文集”词条。3。4预期效益...............................................................................................................16四、内容分发网络解决方案..................................................................................................174.1内容分发网络简介...................................................................................................174。2CDN服务功能....................................................................................................174.3CDN服务特点....................................................................................................18五、负载均衡解决方案..........................................................................................................195.2广域负载均衡..........................................................................................................205。3关键功能和特点....................................................................................................21六、应急响应服务体系................................................................
