WEB Protection Program Position:Home » Solutions » WEB Protection Program
1, background
In recent years, government portals play a more and more important role in government affairs information publicity, news release, propaganda and online work. Government portals were attacked and web pages were tampered with, which seriously affected the image of the government.
Recently, President Obama signed a policy aimed at improving critical infrastructure network security administrative command, the U.S. media has also called the "Chinese spy network" and "network attack" events in the United States suffer from hacker attacks, the possible implementation of the "pre emptive" type of network attack, this was against the Chinese the pattern of the international network security strategy, suddenly tense. Thus, network security plays an increasingly important role in the national military strategy. In the national security policy level, the Ministry of public security will soon put forward stricter level protection requirements for the portal system of Party and government organs. In the next few years, the government portal will become the focus of the construction of equal security.
Faced with the tense situation of international network security and national information security policy, a new round of government portal construction has been opened. Based on years of experience in implementing government portal security and tier protection projects, XXX has proposed a hierarchical solution for government portal protection.
2, XXX government portal rank protection solutions
XXX proposed that the government portal website rank protection construction from the following three aspects:
Level protection rectification: in accordance with the requirements of grade protection, the government portal security rectification, to assist the site through the maintenance assessment;
Website remote monitoring: XXX carries on the remote monitoring to the government portal website security condition, monitors whether the website is available, whether hangs the Trojan horse, whether is attacked, whether has been tampered with, the quick response security event;
Website security operation and maintenance service: XXX analyzes, finds and processes security incidents on government portals, restores the original site in time, manages the security equipment and security system, and provides daily security operation and maintenance work.
1) website security rectification:
·Network level: Taiwan before and after the separation, only DMZ deployment server and related equipment, backstage management server and database deployment in a separate security domain; refinement of the border access control, Internet browsing users can visit the DMZ area, restricted area access server.
·Application level: WEB application firewall to SQL injection, cross site scripting through the application layer intrusion action real-time blocking, and combined with the web tamper resistant system, truly achieve the "tamper proof effect.
·data level, through the XXX professional security reinforcement services to the database security assessment and configuration, access to the database strictly set permissions to ensure maximum database security.
·Application level: WEB application firewall to SQL injection, cross site scripting through the application layer intrusion action real-time blocking, and combined with the web tamper resistant system, truly achieve the "tamper proof effect.
·data level, through the XXX professional security reinforcement services to the database security assessment and configuration, access to the database strictly set permissions to ensure maximum database security.
2) management system:
·In the design of safety management system, we need a clear understanding of the rich experience and the level of protection of security consulting management requirements, tailored for the user in accordance with the actual operational safety management system, pay special attention to the management of site operation and maintenance personnel.
3) security service system:
3) security service system:
·security monitoring services: through senior security experts to monitor and analyze various security incidents such as logs, records, etc., to detect potential dangers and provide timely fixes and defensive measures;
·personnel resident services: in order to solve the problem of limited staffing of customers, XXX expatriate professional and technical personnel to the site operation and maintenance site, providing security operations and maintenance services;
·Emergency response service: emergency response, analysis and solution to the crisis situation of information system. Emergency rescue measures can be provided when unexpected security incidents occur in the information system.
3, the program proceeds
·personnel resident services: in order to solve the problem of limited staffing of customers, XXX expatriate professional and technical personnel to the site operation and maintenance site, providing security operations and maintenance services;
·Emergency response service: emergency response, analysis and solution to the crisis situation of information system. Emergency rescue measures can be provided when unexpected security incidents occur in the information system.
3, the program proceeds
The following benefits can be realized in the implementation of the hierarchical protection construction of government portals:
·Helping clients sort out government portal assets
·Carry out safety rectification according to the requirement of grade protection, assist customers to pass grade protection evaluation
·monitor the security status of the site, quickly respond to site attacks, and restore the site in a timely manner
·To make up for deficiencies in the safety of the government's customers and technical personnel
·Carry out safety rectification according to the requirement of grade protection, assist customers to pass grade protection evaluation
·monitor the security status of the site, quickly respond to site attacks, and restore the site in a timely manner
·To make up for deficiencies in the safety of the government's customers and technical personnel
·Ensure the safe operation of the website system
