摘要
从政府Web应用系统运营者的考虑角度,专门针对政府Web应用特定业务应用的原有被动式安全防御建设基础上,提出在贯穿网站全生命周期的信息安全建设过程中,从事前检测防御、事中应急响应以及事后恢复三个方面对政府网站信息安全体系的完善。将政府网站安全需求转化为更加主动的防御技术,使各级政府网站具备一定的对抗能力和应急恢复能力。
From the perspective of a telecom carrier eng&ged in governmental Web application systems, this paper provides a lifecycle solution in security contains switched disaster building that can perfectly improve the existing passive protection for particular businesses in governmental Web applications. This solution detection before events, emergency reaponse during events and recovery after events, based on which the security requirements are to active prevention techniques, efficient)y endowed the portals of governments at all levels with capability of attack prevention and recovery
出处
《计算机安全》
2012年第7期47-52,共6页
Network & Computer Security
关键词
政府网站
WEB安全
防篡改
防挂马
Governmental Portals
Web Security
Defacement Prevention
Web-based Malware Prevention
