web| security in a way, we can say that without the web, there would be no internet. In most cases, however, Web applications and Web sites tend to be vulnerable to a variety of attacks, and web data can be easily stolen or stolen during network transmission. So how to make the Web and data transfer more secure, is a problem that should cause wide attention.
Overall, the most important measure to protect your Web site from attack is to strengthen security awareness and improve security precautions.
In general, the main purpose of an attacker attacking the web is to:
1, illegal peeping;
2, disguised as a legitimate web site visitors;
3, disguised as a Web site administrator;
4, try to control the Web site host.
First, illegal peeping
The most effective way to prevent web attackers from listening to the behavior is to effectively encrypt the connection that is established between the Web site and the visitor. Almost all Web browsers and servers have the ability to send and receive data on encrypted channels, which are managed by two protocols related to SSL and TLS. Where SSL is generated by Netscape, TLS is compatible with SSL3.0. Figure 1 is the Internet option in Microsoft's IE5.0 browser software, which displays a protocol on security issues.
Figure 1 Various cryptographic protocols supported by IE5.0
Web browsers typically use HTTP (Hypertext Transfer Protocol) to connect to a typical Web site, and the URL in the address bar is generally in the form of http://www.somewhere.com. When a Web browser is connected to a secure site, the browser uses HTTPS (Hypertext Secure Transport Protocol) to establish an encrypted connection, and the URL in the address bar is usually in the form of https://www.somewhere.com
