| 一种有效的Web指纹识别方法 |
| |
| 作者姓名: | 闫淑筠 王文杰 张玉清 |
| |
| 作者单位: | 1.中国科学院大学计算机与控制学院, 北京 101408;2.中国科学院信息工程研究所信息安全国家重点实验室, 北京 100093;3.中国科学院大学国家计算机网络入侵防范中心, 北京 101408 |
| |
| 基金项目: | 国家自然科学基金(61572460,61272481)、信息安全国家重点实验室开放课题基金(2015-MS-06)和360项目资助 |
| |
| 摘 要: | 准确获取Web服务器及其承载的应用的类型及版本对Web站点的安全测试有重要意义.针对Web服务器Banner易被修改,提出使用黑盒测试方法对主流Web服务器进行分析,进而选取可有效防止Banner欺骗的Web服务器指纹;针对Web应用关键字易被删除,提出使用源码审计方法对主流开源Web应用进行分析,进而选取与其功能相关的Web应用指纹,并构建Web指纹库.在此基础上,设计并实现Web指纹识别工具--WebEye.实验结果表明,与主流工具相比,WebEye能更快速准确地识别Web服务器及应用,并具有良好的可扩展性.
|
| 关 键 词: | Web服务器 Web应用 Web指纹识别 Web指纹库 |
| 收稿时间: | 2016-02-19 |
| 修稿时间: | 2016-04-01 |
An efficient method of web fingerprint identification |
| |
| Authors: | YAN Shujun WANG Wenjie ZHANG Yuqing |
| |
| Institution: | 1.School of Computer and Control Engineering, University of Chinese Academy of Sciences, Beijing 101408, China;2.State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China;3.National Computer Network Intrusion Protection Center, University of Chinese Academy of Sciences, Beijing 101408, China |
| |
| Abstract: | It is very important to accurately acquire information of the web server and deployed application for website security testing. Since the web server's Banner was apt to be modified, we used the black-box testing method to analyze major web servers, and then selected web server's fingerprint which could prevent Banner cheating. Since the web application's keywords were apt to be deleted, we used the source code audit method to analyze major web applications, and then selected web application's fingerprint, which was associated with its function, and built a web fingerprint database. Furthermore, a web fingerprint identifying tool WebEye was designed and implemented. Experimental results show that WebEye faster and more accurately identifies the web server and application than similar tools, and it has good scalablity. |
| |
| Keywords: | web server web application web fingerprint identification web fingerprint database |
| 本文献已被 CNKI 等数据库收录! |
| 点击此处可从《》浏览原始摘要信息 |
| 点击此处可从《》下载免费的PDF全文 |
|
