CN112131512B - Method and system for website management script safety certification - Google Patents
Method and system for website management script safety certification Download PDFInfo
- Publication number
- CN112131512B CN112131512B CN202011309038.9A CN202011309038A CN112131512B CN 112131512 B CN112131512 B CN 112131512B CN 202011309038 A CN202011309038 A CN 202011309038A CN 112131512 B CN112131512 B CN 112131512B
- Authority
- CN
- China
- Prior art keywords
- website management
- management script
- encryption algorithm
- factor
- function
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000013515 script Methods 0.000 title claims abstract description 206
- 238000000034 method Methods 0.000 title claims abstract description 28
- 238000004422 calculation algorithm Methods 0.000 claims abstract description 121
- 238000012360 testing method Methods 0.000 claims abstract description 38
- 230000009466 transformation Effects 0.000 claims abstract description 4
- 238000012795 verification Methods 0.000 claims description 14
- 238000012986 modification Methods 0.000 claims description 10
- 230000004048 modification Effects 0.000 claims description 10
- 238000013475 authorization Methods 0.000 claims description 7
- 230000002159 abnormal effect Effects 0.000 claims description 6
- 238000005336 cracking Methods 0.000 abstract description 4
- 150000003839 salts Chemical class 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 239000012634 fragment Substances 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 101100381510 Mus musculus Bcl10 gene Proteins 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000013467 fragmentation Methods 0.000 description 1
- 238000006062 fragmentation reaction Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000012163 sequencing technique Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/958—Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F17/00—Digital computing or data processing equipment or methods, specially adapted for specific functions
- G06F17/10—Complex mathematical operations
- G06F17/18—Complex mathematical operations for evaluating statistical data, e.g. average values, frequency distributions, probability functions, regression analysis
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Data Mining & Analysis (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Databases & Information Systems (AREA)
- Mathematical Optimization (AREA)
- Mathematical Analysis (AREA)
- Computer Hardware Design (AREA)
- Mathematical Physics (AREA)
- Pure & Applied Mathematics (AREA)
- Computational Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Probability & Statistics with Applications (AREA)
- Bioinformatics & Cheminformatics (AREA)
- Multimedia (AREA)
- Operations Research (AREA)
- Technology Law (AREA)
- Bioinformatics & Computational Biology (AREA)
- Algebra (AREA)
- Evolutionary Biology (AREA)
- Life Sciences & Earth Sciences (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Information Transfer Between Computers (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention provides a method and a system for website management script security authentication, wherein the method comprises the following steps: determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script; adding a preset number of factor switches to reform the website management script, wherein the factor switches are authorized and authenticated by the website management script; testing the use function of the website management script after the factor adding switch is transformed; constructing an encryption algorithm library, and carrying out multiple encryption on factor switches in the website management script according to the set encryption repetition number; and outputting the website management script which completes the multiple encryption of the factor switch, testing the use function of the website management script, and completing the transformation of the website management script. The invention improves the complexity of website management script password authentication; the purpose that violent cracking is difficult to realize under the condition that source codes are not obtained is achieved, and the safety of the website management script is improved.
Description
Technical Field
The invention belongs to the technical field of network security, and particularly relates to a method and a system for security authentication of a website management script.
Background
With the rapid development and the widespread application of modern information network technology, information such as politics, economy, science and technology, military and the like increasingly depends on an information network system for storage, processing and transmission, and meanwhile, the Web technology is continuously developed and updated. Web is applied to various industries and has wide range. The Web site is used as an important Internet application, is an important service for bearing the customs of the concerned state and is an important entrance for connecting a key service network.
The Web site designer also undertakes operation, maintenance and management of the Web site while designing the Web site, and although the Web site has a management background of the Web site, the authority of the management background is relatively low in order to improve the security of the Web site, and functions such as file operation, database management, command line control and the like are lacked. Web site designers usually place website management scripts on a Web site, so that the functions of the website can be quickly detected, and modification of website codes is facilitated. But also exposes some safety issues, mainly in the following areas:
1. the website management script has no security encryption measures. While such a script website administrator can access, others can access. Once detected, unauthorized access and access can be directly performed, so that others can directly control the Web server where the website management script is located.
2. There are simple encryption measures for website management scripts. The script can complete password cracking through methods such as password dictionaries, social engineering or distributed brute force cracking, and the like, and unauthorized access and control of the website management script are completed through the obtained password.
Therefore, one technical problem that needs to be solved by those skilled in the art is: how to creatively provide an effective method for website management script security authentication, overcome the defects of the prior art and meet more requirements in practical application.
Disclosure of Invention
The embodiment of the application aims to provide a website management script security authentication method, aims to improve the use security of the website management script, and ensures the authorized access of the website management script and prevents the website management script from being accessed and used by others without authorization by constructing a security access control mechanism with multiple encryption and multi-factor switch setting. And determining the preset number of the factor switches and the adding positions of the factor switches according to the number of the function points of the website management script and the probability distribution of the function points of the website management script, so that the number and the setting positions of the factor switches are reasonable, and the safety and the using speed of the website management script are ensured.
In order to solve the above technical problem, the embodiment of the present application is implemented as follows:
according to a first aspect of an embodiment of the present application, a method for security authentication of a website management script is provided, where the method includes:
acquiring and analyzing a website management script, and analyzing a function point of the website management script;
counting the number of the function points of the website management script and the distribution of each function point;
determining the probability distribution of the function points of the website management script according to the distribution of the function points;
determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script;
adding a preset number of factor switches to reform the website management script, wherein the factor switches are authorized and authenticated by the website management script;
testing the use function of the website management script after the factor adding switch is transformed;
constructing an encryption algorithm library, selecting a proper encryption algorithm from the encryption algorithm library, and performing multiple encryption on a factor switch in the website management script according to a set encryption repetition number;
and outputting the website management script which completes the multiple encryption of the factor switch, testing the use function of the website management script, and completing the transformation of the website management script.
In another embodiment of the website management script security authentication method, the encryption algorithm library comprises one or more of md5 encryption algorithm, crypt encryption algorithm, base64 encryption algorithm, sha1 encryption algorithm and sha256 encryption algorithm.
In another embodiment of the website management script security authentication method, the encryption algorithm library further comprises a custom encryption algorithm, the custom set encryption algorithm is added into the encryption algorithm library, and the custom encryption algorithm comprises a slice index-based modified md5 encryption algorithm.
In another embodiment of the method for the security authentication of the website management script, when the use function of the website management script after the modification of the adding factor switch is tested, the authorized access to the website can only be completed when the factor switch is correctly input, so that the command is executed by using the website management script, otherwise, the website cannot be normally accessed.
In another embodiment of the method for the website management script security certification based on the present invention, the using function of the test website management script is to send a verification data packet and receive feedback information to check the original function of the website management script by writing a test program under set parameters;
if the test program sends a verification data packet under the set parameters and receives incorrect feedback information, the original function of the website management script is abnormal, and therefore the factor switch and the encryption algorithm are considered to be abnormal;
if the test program sends a verification data packet under the set parameters and receives correct feedback information, the original functions of the website management script are normal, and the factor switch and the encryption algorithm are considered to be normal.
In another embodiment of the method for security authentication of website management scripts according to the present invention, the factor switch exists in a parameter form, and is used for authorization authentication of access to the website management scripts, and when the input factor is correct and the factor input parameter is correct, the normal functions of the website management scripts can be used.
Based on another aspect of the embodiments of the present invention, a system for website management script security authentication is disclosed, which includes:
the system comprises a factor switch configuration module, a factor switch setting module, an encryption algorithm library, a first website management script function test module, a multiple encryption module and a second website management script function test module;
the factor switch configuration module acquires and analyzes a website management script, and analyzes a function point of the website management script; counting the number of the function points of the website management script and the distribution of each function point; determining the probability distribution of the function points of the website management script according to the distribution of the function points; determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script;
the factor switch setting module reforms the website management script through a preset number of factor switches to complete authorization authentication of the website management script;
the first website management script function testing module is used for testing the modification of the website management script adding factor switch by the factor switch setting module and judging the use function of the website management script;
the encryption algorithm library stores one or more encryption algorithms, and the encryption algorithms comprise a preset encryption algorithm and a user-defined encryption algorithm;
the multiple encryption module selects a proper encryption algorithm from the encryption algorithm library, and multiple encryption is performed on the factor switch in the website management script preset by the factor switch setting module according to a set encryption repetition number;
the second website management script function testing module is used for testing the multiple encryption modification of the factor switch in the website management script by the multiple encryption module and judging the use function of the website management script.
In another embodiment of the system for website management script security authentication according to the present invention, the preset encryption algorithm includes: one or more of md5 encryption algorithm, crypt encryption algorithm, base64 encryption algorithm, sha1 encryption algorithm, sha256 encryption algorithm, and slice index-based modified md5 encryption algorithm.
In another embodiment of the system for website management script security authentication according to the present invention, the first website management script function testing module and the second website management script function testing module send verification data packets and receive feedback information to check the original functions of the website management scripts under the set parameters through the compiled testing programs.
The method is mainly used for improving the security of the website management script, and the complexity of password authentication of the website management script is improved through multiple encryption; by setting the multi-factor switch, the security is improved on the aspect of communication authentication, and the purpose that violent cracking is difficult to carry out under the condition that a source code is not obtained is realized. And determining the preset number of the factor switches and the adding positions of the factor switches according to the number of the function points of the website management script and the probability distribution of the function points of the website management script, so that the number and the setting positions of the factor switches are reasonable, and the safety and the using speed of the website management script are ensured.
Drawings
FIG. 1 illustrates a schematic structural diagram of a system for website management script security authentication provided in accordance with some embodiments of the present application;
FIG. 2 illustrates a flow chart of an implementation of a method for website management script security authentication provided according to some embodiments of the present application.
In the figure, a factor-1 switch setting module, a2 encryption algorithm library, a 3 first website management script function testing module, a 4 multiple encryption module, a 5 second website management script function testing module and a 6 factor switch configuration module.
Detailed Description
The following detailed description of embodiments of the invention refers to the accompanying drawings.
Fig. 1 is a schematic structural diagram illustrating a system for website management script security authentication provided in some embodiments of the present application, and the system for website management script security authentication in an example embodiment is described in detail with reference to fig. 1. The system for the website management script security authentication comprises:
the system comprises a factor switch setting module 1, an encryption algorithm library 2, a first website management script function testing module 3, a multiple encryption module 4, a second website management script function testing module 5 and a factor switch configuration module 6;
the factor switch configuration module 6 acquires and analyzes a website management script, and analyzes a function point of the website management script; counting the number of the function points of the website management script and the distribution of each function point; determining the probability distribution of the function points of the website management script according to the distribution of the function points; and determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script.
In this embodiment, the factor switch configuration module 6 determines all function points of the website management script by analyzing the website management script, counts all function points, and records the distribution of each function point, for example, the interval, the closeness degree, and the correlation degree between a certain function point i and other function points; and determining the probability distribution condition of the function points of the website management script according to the distribution of the function points. Then, the preset number of the factor switches is determined based on the number of the function points, and the corresponding relation between the number of the function points and the number of the factor switches can be preset, for example, one factor switch is arranged at every 10 function points, or a plurality of factor switches are added when the number of the function points reaches one magnitude; based on the probability distribution of the function points of the website management script, for example, when the density of the function points in a window exceeds a preset threshold, a factor switch can be uniformly added among the function points in the window.
The factor switch setting module 1 reforms the website management script through a preset number of factor switches to complete authorization authentication of the website management script;
the first website management script function testing module 3 is used for testing the modification of the factor switch setting module 1 on the website management script adding factor switch and judging the use function of the website management script
The encryption algorithm library 2 stores one or more encryption algorithms, wherein the encryption algorithms comprise a preset encryption algorithm and a user-defined encryption algorithm;
the multiple encryption module 4 selects a proper encryption algorithm from the encryption algorithm library 2, and multiple encryption is performed on the factor switch in the website management script preset by the factor switch setting module 1 according to the set encryption repetition number;
the second website management script function testing module 5 is configured to test the multiple encryption modification of the factor switch in the website management script by the multiple encryption module 4, and determine the use function of the website management script.
The preset encryption algorithm comprises: one or more of md5 encryption algorithm, crypt encryption algorithm, base64 encryption algorithm, sha1 encryption algorithm, sha256 encryption algorithm, and slice index-based modified md5 encryption algorithm.
The first website management script function testing module 3 and the second website management script function testing module 5 respectively check whether the original functions of the website management scripts are normal by sending verification data packets and receiving feedback information under set parameters through a compiled testing program.
Fig. 2 is a flowchart illustrating an implementation flow of a method for security authentication of a website management script according to some embodiments of the present application, and the method for security authentication of a website management script in an example embodiment is described in detail with reference to fig. 2. The method for the website management script security authentication comprises the following steps:
01, acquiring and analyzing a website management script, and analyzing a function point of the website management script;
counting the number of the function points of the website management script and the distribution of each function point;
determining the probability distribution of the function points of the website management script according to the distribution of the function points;
determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script;
in this embodiment, all function points of the website management script are determined by analyzing the website management script, then all function points are counted, and the distribution of each function point is recorded, for example, the interval, the closeness degree, and the correlation degree between a certain function point i and other function points; and determining the probability distribution condition of the function points of the website management script according to the distribution of the function points. Then, the preset number of the factor switches is determined based on the number of the function points, and the corresponding relation between the number of the function points and the number of the factor switches can be preset, for example, one factor switch is arranged at every 10 function points, or a plurality of factor switches are added when the number of the function points reaches one magnitude; based on the probability distribution of the function points of the website management script, for example, when the density of the function points in a window exceeds a preset threshold, a factor switch can be uniformly added among the function points in the window.
10, adding a preset number of factor switches to reform the website management script, wherein the factor switches are authorized and authenticated by the website management script;
20, testing the use function of the website management script after the factor adding switch is modified;
it should be noted that, in the exemplary embodiment of fig. 2, the purpose of setting the multi-factor switch is to improve the security of the website management script, and for the constructed parameters as factors, the verification can be passed if and only if the verification passes that the parameter names and the parameter contents are correct. In practical application, the factor switch exists in a parameter form and is used for authorization authentication of accessing the website management script, and when the input factor is correct and the factor is transmitted into the parameter to be correct, the normal function of the website management script can be used. For example, if the setting factor switches are "a = h" and "x = i", respectively, the command can be successfully executed by using the website management script only when the parameters "a, x" appear simultaneously and "a = h, x = i":
by setting the multi-factor switch, under the condition of not knowing a source code, the situation of guessing the solution through violence is basically impossible, so that the safety of the website management script is improved.
For constructing the factor switch for the website management script, the following method can be referred to:
assuming that the number of the construction factor switches is 2, the constructed azimuth format is:
http:// "URL Address of Website"V. Website management script "
"factor switch 1" = "p"&"factor switch 2" = "q".
30, constructing an encryption algorithm library 2, selecting a proper encryption algorithm from the encryption algorithm library 2, and performing multiple encryption on a factor switch in the website management script according to a set encryption repetition number;
the authentication encryption is to modify the plaintext password of the website management script into another encryption authentication method. In this embodiment, a php script is taken as an example, and encryption algorithms such as an md5 encryption algorithm, a crypt encryption algorithm, a base64 encryption algorithm, a sha1 encryption algorithm, and a sha256 encryption algorithm are respectively used for description:
using the md5 encryption algorithm: string md5 (string str [, cool _ raw _ output = false ]);
the parameter str is an original character string; raw _ output is optional, and if raw _ output is set to TRUE, the md5 message digest will be returned in the original binary format of 16 bytes in length;
adopting a crypt encryption algorithm: the crypt encryption algorithm encrypts the character string by using a UNIX standard encryption DES module, which is a one-way encryption function and cannot decrypt, and to compare the character string, the first two characters of the encrypted character string are put in salt parameters, and then the encrypted character string is compared:
string crypt(string str, string [salt]);
crypt () returns a hash string based on the standard UNIX DES algorithm or other available alternative algorithms on the system; the parameter str is a character string to be hashed; salt is an optional salt string, if not provided, algorithm behavior will be determined by different algorithm implementations and may lead to unpredictable ending;
base64 encryption algorithm: the BASE64 encryption algorithm encodes the character string with MIME BASE64, and the encoding is designed to make the binary data be transmitted through a non-pure 8-bit transmission layer, and the encoding mode can make Chinese characters or pictures be transmitted smoothly on the network;
the syntax of the base64 encryption algorithm is: string base64_ encode (string data);
its decryption function is: string Base64_ decoded (string encoded _ data) and Base64-encoded data occupies about 33% more space than the original data.
Modified md5 encryption algorithm based on slice index:
and (3) encryption algorithm:
1. inputting the content to be encrypted, and carrying out md5 encryption on the content, and recording the content as the ciphertext;
2. randomly distributing an analytic number N by a random operator, carrying out fragmentation operation on the nepher, and indexing each fragment, wherein the index sequence is {0,1, 2., N-1 };
3. and (3) performing random sequencing on the index sequence again to obtain a new sequence random (N), for example random (N) = {0,3, 1.. N-1, N-2 }.
4. And reordering the fragments according to random (N) to obtain new _ cipher, namely the ciphertext.
And (3) decryption algorithm:
1. receiving the ciphertext, and performing slicing operation on the new _ cipher according to the N value in the index sequence random (N);
2. reordering N fragments of the new _ cirer according to an index sequence random (N);
3. and combining the reordered segments and restoring the combined segments into md5 encrypted ciphertext ciper.
The details are described by taking the double encryption as an example:
selecting an encryption algorithm A from an algorithm library, and encrypting a factor switch in a website management script once, wherein the access format after encryption is as follows:
http:// "site URL address"/"site management script"
("factor switch 1") = "p"&A ("factor switch 2") = "q";
selecting an encryption algorithm B from the algorithm library, carrying out secondary encryption on a factor switch in the website management script, wherein the access format after encryption is as follows:
http:// "site URL address"/"site management script"
("a (factor switch 1)") = "p"&B ("a (factor switch 2)") = "q".
And 40, outputting the website management script which completes the multiple encryption of the factor switch, testing the use function of the website management script, and completing the transformation of the website management script.
For a website management script, setting the factor switches as "factor switch 1" and "factor switch 2", respectively, after multiple encryption, B ("a (factor switch 1)") and B ("a (factor switch 2)"), the website management script can be successfully used to execute the command only when the parameters "B (" a (factor switch 1) "), B (" a (factor switch 2) ")" simultaneously appear and "a (" factor switch 1 ") =" p "& a (" factor switch 2 ") =" q "").
The encryption algorithm library 2 comprises one or more of md5 encryption algorithm, crypt encryption algorithm, base64 encryption algorithm, sha1 encryption algorithm and sha256 encryption algorithm.
The encryption algorithm library 2 further comprises a custom encryption algorithm, the custom set encryption algorithm is added into the encryption algorithm library 2, and the custom encryption algorithm comprises a slice index-based improved md5 encryption algorithm.
When the use function of the website management script is tested after the factor switch is added and modified, authorized access to the website can only be completed when the factor switch is correctly input, so that the website management script is used for executing a command, otherwise, the website cannot be normally accessed.
The use function of the test website management script is to send a verification data packet and receive feedback information to check the original function of the website management script under the set parameters by a written test program;
if the test program sends a verification data packet under the set parameters and receives incorrect feedback information, the original function of the website management script is abnormal, and therefore the factor switch and the encryption algorithm are considered to be abnormal;
if the test program sends a verification data packet under the set parameters and receives correct feedback information, the original functions of the website management script are normal, and the factor switch and the encryption algorithm are considered to be normal.
By constructing multiple encryption and setting a multi-factor switch, the security of the website management script is improved, and the aims of preventing unauthorized access and controlling the website are fulfilled.
It will be evident to those skilled in the art that the embodiments of the present invention are not limited to the details of the foregoing illustrative embodiments, and that the embodiments of the present invention are capable of being embodied in other specific forms without departing from the spirit or essential attributes thereof. The present embodiments are therefore to be considered in all respects as illustrative and not restrictive, the scope of the embodiments being indicated by the appended claims rather than by the foregoing description, and all changes which come within the meaning and range of equivalency of the claims are therefore intended to be embraced therein. Any reference sign in a claim should not be construed as limiting the claim concerned. Furthermore, it is obvious that the word "comprising" does not exclude other elements or steps, and the singular does not exclude the plural. Several units, modules or means recited in the system, apparatus or terminal claims may also be implemented by one and the same unit, module or means in software or hardware. The terms first, second, etc. are used to denote names, but not any particular order.
Finally, it should be noted that the above embodiments are only used for illustrating the technical solutions of the embodiments of the present invention and not for limiting, and although the embodiments of the present invention are described in detail with reference to the above preferred embodiments, it should be understood by those skilled in the art that modifications or equivalent substitutions can be made on the technical solutions of the embodiments of the present invention without departing from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (9)
1. A method for website management script security authentication is characterized by comprising the following steps:
acquiring and analyzing a website management script, and analyzing a function point of the website management script;
counting the number of the function points of the website management script and the distribution of each function point;
determining the probability distribution of the function points of the website management script according to the distribution of the function points;
determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script;
adding a preset number of factor switches to reform the website management script, wherein the factor switches are authorized and authenticated by the website management script;
testing the use function of the website management script after the factor adding switch is transformed;
constructing an encryption algorithm library, selecting a proper encryption algorithm from the encryption algorithm library, and performing multiple encryption on a factor switch in the website management script according to a set encryption repetition number;
and outputting the website management script which completes the multiple encryption of the factor switch, testing the use function of the website management script, and completing the transformation of the website management script.
2. The website management script security authentication method of claim 1, wherein the encryption algorithm library comprises one or more of md5 encryption algorithm, crypt encryption algorithm, base64 encryption algorithm, sha1 encryption algorithm, sha256 encryption algorithm.
3. The method of website management script security authentication of claim 2, wherein the encryption algorithm library further comprises a custom encryption algorithm, and wherein the custom set encryption algorithm is added to the encryption algorithm library, and wherein the custom encryption algorithm comprises a modified md5 encryption algorithm based on a slice index.
4. The method of claim 1, wherein when the factor switch is correctly input during testing the functions of the website management script after modification of the factor switch, authorized access to the website can only be completed, so that the website management script is used to execute the command, otherwise, the website cannot be normally accessed.
5. The method for website management script security certification according to claim 1, wherein the using function of the website management script is to send a verification data packet and receive feedback information to check the original function of the website management script by a written test program under set parameters;
if the test program sends a verification data packet under the set parameters and receives incorrect feedback information, the original function of the website management script is abnormal, and therefore the factor switch and the encryption algorithm are considered to be abnormal;
if the test program sends a verification data packet under the set parameters and receives correct feedback information, the original functions of the website management script are normal, and the factor switch and the encryption algorithm are considered to be normal.
6. The method of claim 1, wherein the factor switch is in the form of a parameter for authorization to access the website management script, and when the inputted factor switch is correct and the parameter inputted by the factor switch is correct, the normal function of the website management script can be used.
7. A system for website management script security authentication, comprising:
the system comprises a factor switch configuration module, a factor switch setting module, an encryption algorithm library, a first website management script function test module, a multiple encryption module and a second website management script function test module;
the factor switch configuration module acquires and analyzes a website management script, and analyzes a function point of the website management script; counting the number of the function points of the website management script and the distribution of each function point; determining the probability distribution of the function points of the website management script according to the distribution of the function points; determining the preset number of the factor switches and the adding positions of the factor switches based on the number of the function points of the website management script and the probability distribution of the function points of the website management script;
the factor switch setting module reforms the website management script through a preset number of factor switches to complete authorization authentication of the website management script;
the first website management script function testing module is used for testing the modification of the website management script adding factor switch by the factor switch setting module and judging the use function of the website management script;
the encryption algorithm library stores one or more encryption algorithms, and the encryption algorithms comprise a preset encryption algorithm and a user-defined encryption algorithm;
the multiple encryption module selects a proper encryption algorithm from the encryption algorithm library, and multiple encryption is performed on the factor switch in the website management script preset by the factor switch setting module according to a set encryption repetition number;
the second website management script function testing module is used for testing the multiple encryption modification of the factor switch in the website management script by the multiple encryption module and judging the use function of the website management script.
8. The website management script security authentication system of claim 7, wherein the preset encryption algorithm comprises: one or more of md5 encryption algorithm, crypt encryption algorithm, base64 encryption algorithm, sha1 encryption algorithm, sha256 encryption algorithm, and slice index-based modified md5 encryption algorithm.
9. The system for website management script security certification according to claim 7, wherein the first website management script function testing module and the second website management script function testing module respectively send verification data packets and receive feedback information to verify the original functions of the website management scripts under the set parameters through a written testing program.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011309038.9A CN112131512B (en) | 2020-11-20 | 2020-11-20 | Method and system for website management script safety certification |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011309038.9A CN112131512B (en) | 2020-11-20 | 2020-11-20 | Method and system for website management script safety certification |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112131512A CN112131512A (en) | 2020-12-25 |
| CN112131512B true CN112131512B (en) | 2021-02-09 |
Family
ID=73852067
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011309038.9A Active CN112131512B (en) | 2020-11-20 | 2020-11-20 | Method and system for website management script safety certification |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112131512B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103823747A (en) * | 2012-11-16 | 2014-05-28 | 上海华虹集成电路有限责任公司 | Automatic regression testing method |
| CN107122297A (en) * | 2017-04-18 | 2017-09-01 | 上海雷腾软件股份有限公司 | The method and apparatus that request message for test interface is generated |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TW201227385A (en) * | 2010-12-16 | 2012-07-01 | Univ Nat Taiwan Science Tech | Method of detecting malicious script and system thereof |
-
2020
- 2020-11-20 CN CN202011309038.9A patent/CN112131512B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103823747A (en) * | 2012-11-16 | 2014-05-28 | 上海华虹集成电路有限责任公司 | Automatic regression testing method |
| CN107122297A (en) * | 2017-04-18 | 2017-09-01 | 上海雷腾软件股份有限公司 | The method and apparatus that request message for test interface is generated |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112131512A (en) | 2020-12-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP6329970B2 (en) | Policy enforcement with relevant data | |
| KR20040007769A (en) | Method for an integrated protection system of data distributed processing in computer networks and system for carrying out said method | |
| CN110177134B (en) | Secure password manager based on multi-cloud storage and use method thereof | |
| CN112653556B (en) | TOKEN-based micro-service security authentication method, device and storage medium | |
| CN110708291B (en) | Data authorization access method, device, medium and electronic equipment in distributed network | |
| CN112073467A (en) | Block chain-based data transmission method and device, storage medium and electronic equipment | |
| CN112202754A (en) | Data encryption method and device, electronic equipment and storage medium | |
| CN117240625B (en) | Tamper-resistant data processing method and device and electronic equipment | |
| CN115473655B (en) | Terminal authentication method, device and storage medium for access network | |
| Kumar et al. | TPA auditing to enhance the privacy and security in cloud systems | |
| CN110912877A (en) | Data transmitting and receiving method and device based on IEC61850 model in transformer substation | |
| CN111884811A (en) | Block chain-based data evidence storing method and data evidence storing platform | |
| CN101924734A (en) | Identity authentication method and authentication device based on Web form | |
| CN110708156B (en) | Communication method, client and server | |
| US20210035018A1 (en) | Apparatus for verifying integrity of AI learning data and method therefor | |
| CN112016082B (en) | Authority list safety control method | |
| Alshomrani et al. | PUFDCA: A Zero‐Trust‐Based IoT Device Continuous Authentication Protocol | |
| CN113918977A (en) | User information transmission device based on Internet of things and big data analysis | |
| CN112131512B (en) | Method and system for website management script safety certification | |
| CN114553557B (en) | Key calling method, device, computer equipment and storage medium | |
| CN114553566B (en) | Data encryption method, device, equipment and storage medium | |
| CN115643047A (en) | Block chain identity authentication method based on honest rewards | |
| Ghassabi et al. | DEDUCT: A Secure Deduplication of Textual Data in Cloud Environments | |
| Keerthana et al. | Slicing, Tokenization, and Encryption Based Combinational Approach to Protect Data-at-Rest in Cloud Using TF-Sec Model | |
| CN109347867A (en) | A kind of safety certifying method and system based on http protocol |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |