Browse > Article
http://dx.doi.org/10.5392/JKCA.2022.22.02.071

Proposal for Designing and Building a Special Purpose Web Server with Enhanced Security  

Hong, Seong-Rak (배재대학교 사이버보안학과)
Jo, In-June (배재대학교 사이버보안학과)
Publication Information
The Journal of the Korea Contents Association / v.22, no.2, 2022 , pp. 71-79 More about this Journal
Abstract
Currently, even if control and mock hacking are performed for the security of web servers, vulnerabilities continue to occur and be hacked. To solve this problem, we have developed a secure web server that can control all web communication using sockets between L4 and L5. And when giving HTTP responses, we proposed a method of combining files and headers in advance. As a result, both security and speed could be improved. Therefore, in this paper, we proposed the reason why vulnerabilities occur even if control and mock hacking occur, a solution to it, and a security web server development method that can maintain security up to DB.
Keywords
Socket; TCP/IP; WEB; HTTP; Linux; Multiple fork;
Citations & Related Records
연도 인용수 순위
  • Reference
1 https://httpd.apache.org
2 https://www.php.net
3 https://www.mysql.com
4 강동조, 박현주, "TCP/IP 소켓통신에서 대용량 스트링 데이터의 전송 속도를 높이기 위한 송수신 모델 설계 및 구현," 한국정보통신학회논문지, Vol.17, No.4, pp. 885-892, 2013.   DOI
5 https:/www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5638
6 https:/www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4870
7 김지훈, 최주호, "윈도우즈 소켓 기반 분산처리 기술을 이용한 항공기 엔진마운트의 최적설계," 論文集, Vol.38, pp.29-38. 2000.   DOI
8 권희웅, 정형진, 곽후근, 김영종, 정규식, "멀티코어 시스템에서 흐름 수준 병렬처리에 기반한 리눅스 TCP/IP 스택의 성능 개선," 정보처리학회논문지, Vol.16, No.2, pp.113-124, 2009.