SilkSecured: A Comprehensive Analysis of Security and Dependencies in China's Governmental Web Systems-Reference-Cited by-同舟云学术

SilkSecured: A Comprehensive Analysis of Security and Dependencies in China's Governmental Web Systems

Published:2024-04-29 Issue: Volume: Page:
ISSN:
Container-title:
language:
Short-container-title:

Author:

Zuo Ming¹,Cheng Yanan¹,Li Chao¹,Xu Haiyan¹,Zhang Zhaoxin¹

Affiliation:

1. Harbin Institute of Technology

Abstract

The study "SilkSecured" delves into the practice of governmental web systems in China. It scrutinizes the security and dependency challenges besieging China's governmental web infrastructure, with an intent to unearth pivotal concerns and proffer enhancements. The inquiry reveals substantial vulnerabilities and dependencies that could impede the digital efficacy and safety of governmental web systems. To counter these identified frailties, "SilkSecured" presents a suite of strategic recommendations tailored to bolster the digital fortitude of China's governmental web infrastructure. It underscores the critical need for robust domain name resolution services to assure secure and reliable access to government websites. The study accentuates the necessity for stringent vetting and regular updates of third-party libraries, aiming to avert potential security threats. Furthermore, it advocates for an optimized deployment of web systems by advocating for a diversified distribution of network nodes, which could substantially augment system resilience and performance. Through this comprehensive analysis, "SilkSecured" aspires to serve as a beacon for governmental departments, championing the ongoing enhancement of security protocols within China's governmental web domains. This initiative is envisioned to fortify the digital infrastructure against the spectrum of evolving cyber threats, thus safeguarding the digital governance ecosystem in China. The recommendations provided aim to underpin the robustness and reliability of governmental web systems, ensuring their integrity in the digital era.

Publisher

Springer Science and Business Media LLC

Reference43 articles.

1. Kumar, D., Ma, Z., Durumeric, Z., Mirian, A., Mason, J., Halderman, J.A., Bailey, M.: Security challenges in an increasingly tangled web. Proceedings of the 26th International Conference on World Wide Web (2017)

2. Ramasubramanian, V., Sirer, E.G.: Perils of transitive trust in the domain name system. In: ACM/SIGCOMM Internet Measurement Conference (2005)

3. Houser, R., Hao, S., Li, Z., Liu, D., Cotton, C., Wang, H.: A comprehensive measurement-based investigation of dns hijacking. 2021 40th International Symposium on Reliable Distributed Systems (SRDS), 210–221 (2021)

4. Houser, R., Hao, S., Cotton, C., Wang, H.: A comprehensive, longitudinal study of government dns deployment at global scale. 2022 52nd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 193–204(2022)

5. Guo, R., Chen, J., Liu, B., Zhang, J., Zhang, C., Duan, H., Wan, T., Jiang, J., Hao, S., Jia, Y.: Abusing cdns for fun and profit: Security issues in cdns’ origin validation. 2018 IEEE 37th Symposium on Reliable Distributed Systems (SRDS), 1–10 (2018)