According to CNNIC's report, as of December 2013, the number of websites in China reached 3.2 million, an increase of 520,000 over the previous year, an increase of 19.4%. However, according to the latest Baidu survey, 65% Chinese websites are in an unsafe condition, of which 31% are in moderate or high crisis situations.
In such a harsh situation of information security, how to do a good job in server security protection, to protect the information security? Today, I chose the cloud lock, speed music, security Po, 360 website guards which four more popular server security products do horizontal Comparison:
Four product function modules:
It can be seen from the list that all four products have anti-CC, SQL injection and XSS cross-site defense against application attacks. Attacks on the application layer are more common attacks and all four products do Out of the corresponding defensive measures, their differences are mainly reflected in the network layer, the system layer defense strategy: the network layer protection, acceleration, security Po, 360 site defenders have the function of DDOS defense, application layer protection, with anti CC, SQL injection, XSS cross-station, etc .; and in the system layer protection, only the cloud lock with anti-operating system protection. The following explain the role of network layer, application layer security protection:
Network layer security based on CDN technology:
Baidu Accel, Safe Po, 360 Web Guards are based on CDN technology security products, these security products have two major roles: Web site acceleration and security. From an accelerating point of view, service providers deploy CDN nodes in multiple locations to effectively speed up website access. From a security perspective, they can isolate interactive connections between hackers and web servers, hide web server IP addresses, and To ensure the safe and stable operation of the site, which is currently the most effective security measures against DDOS attacks. However, although CDN technology accelerates the static website effect is very obvious, but the dynamic file acceleration has been unsatisfactory, the other if the hacker already know the target server's IP, this defense may be ineffective.
Strengthen the operating system to provide the system's own immunity
Cloud Lock is the industry's first cloud-based security appliance for server operating systems that enhances the server's security level by consolidating operating systems. Windows and Linux systems used by most websites in China belong to C2-level operating systems and are relatively weak in attack defense. Hackers can easily attack operating system vulnerabilities. Cloud lock is implemented by refactoring SSOOS (Operating System Security Subsystem ) Method, the original function module from dozens to 100, it has a lot of B1-level operating system security features, from the system kernel layer immune malicious code (viruses, Trojans, worms) implementation of the system-layer vulnerabilities attack. Simply put cloud lock is like a "system lock", the system resources (files, registries, users, ports, disks, services, etc.) for security lock, while ensuring its availability is not tampered with and malicious access . Although the cloud lock to do the real security of the operating system, but in the network layer defense, but did not accelerate the defense functions such as music.
System layer + application protection + network layer protection to build server security system
Whether it is accelerated or cloud lock, are only part of the protection level, only the two types of products together to achieve the system layer, application layer and network layer multiple protection, in order to achieve the true server security, so the current stage More effective defense strategy is recommended to use the cloud lock www.yunsuo.com.cn to ensure that the server operating system security, and then with a CDN-based network security products such as accelerated music, security Po or 360 website guards.