CAJ | 학술논문

　　文章综述了构建一个安全的Web应用系统需要遵守的准则。并根据Web应用系统层次化的结构特点，从构建合理安全的网络拓扑结构，配置安全严格的主机系统安全策略，编写严谨的应用代码三个方面阐述了如何从技术方面来构建安全的Web应用系统。另外也强调了建立以人为主体的安全管理与技术相结合的保护模式的重要性。
　　문장종술료구건일개안전적Web응용계통수요준수적준칙。병근거Web응용계통층차화적결구특점，종구건합리안전적망락탁복결구，배치안전엄격적주궤계통안전책략，편사엄근적응용대마삼개방면천술료여하종기술방면래구건안전적Web응용계통。령외야강조료건립이인위주체적안전관리여기술상결합적보호모식적중요성。
With the development of network technology, Hackers’ attention were transferred from attacking the Web server to attacking the Web application system.So many softwares for hacking make it easy for hackers to attack Web applications system.Network security incident occurred frequently, So Web security has been widespread concern.This paper introduced how to build a security Web application system.From the following three aspects that how to construct the Web application security system. First,reasonable construction safety of network topology. Secondly,making the confguration of the host system security strategy strict.Third,writting rigorous application code. Also,it is very important to make the safety management and technical combination.