Background

With the skyrocketing development of the Internet, new technology and new service are thriving in recent years, such as mobile internet, cloud computing, e-commerce, network media and so on.

 

 

Meanwhile, hacking activity is running increasingly wide, with events like webpage defacement, URL injection, webshell, phishing and denial of service attack showing rapid growth, which has a direct damaging impact on the rights of netizens and enterprises and impedes the development of industry surveillance.

 

According to CNCERT, in 2012, the number of distorted websites within Chinese border was 16,388, including 1,802 governmental websites, with an increase of 6.1% and 21.4% compared to last year respectively; and websites secretly implanted backdoor amounted to 52,324, including 3,016 governmental ones, with an increase of 213.7% and 93.1% monthly compared to last year.

 

Besides, according to rough estimation, more than 50 Chinese websites leaked their user information databases on Internet deliberately or sold them through the underground black industry chain, with nearly 50 million pieces of information confirmed true.

 

At the same time, influenced by the scandal of information leakage by CSDN and Tianya Community in the end of 2011, many e-commerce sites and BBS were disclosed to leak personal information of users in 2012 as netizens were likely to use the same account and password on different websites. Website security, especially the security of users’ personal information and data, is confronted with severe threat.