Survey of web backdoor detection and protection | |
Duan, L. ; Zhang, L.H. ; Chen, Z.F. ; Wei, T. ; Han, X.H. | |
2014 | |
英文摘要 | Web backdoors (also called webshell) are backdoors of web sites. By definition, web backdoors are hard to detect and are great threat to web users and web sites (especially PHP and ASP web sites). In this paper, we consider the problem of web backdoor detection and protection. We perform an in-depth analysis of varied install methods and hiding techniques that web backdoors used. We summarize web backdoor detection and protection mechanisms in three aspects: server configuration and reinforcement, intrusion detection systems, and static analysis. In addition, we propose a protection mechanism that combines white list with dynamic analysis to detect and prevent PHP backdoors. This mechanism can completely prevent web backdoors by detecting sensitive functions and has no false positive. Though current researches make it more difficult to make web backdoor attacks, there are still many limitations and unresolved issues that need both academia and industrial community to work on in the future. ? 2014 WIT Press.; EI; 0 |
语种 | 英语 |
DOI标识 | 10.2495/MIIT131131 |
内容类型 | 其他 |
源URL | [http://ir.pku.edu.cn/handle/20.500.11897/321431] |
专题 | 计算机科学技术研究所 |
推荐引用方式 GB/T 7714 | Duan, L.,Zhang, L.H.,Chen, Z.F.,et al. Survey of web backdoor detection and protection. 2014-01-01. |
个性服务 |
查看访问统计 |
相关权益政策 |
暂无数据 |
收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论