| 电力系统移动应用安全测试技术研究 |
| |
| 作者姓名: | 郭静 姜海涛 王梓莹 |
| |
| 作者单位: | 国网电力系统人工智能联合实验室(国网江苏省电力有限公司电力科学研究院) |
| |
| 摘 要: | 文中首先阐述了移动业务在电力系统的发展现状、部署特点和应用情况,分析了其客户端、服务端、数据传输、管理端等层面面临的安全风险。接着特别针对移动客户端安全特性,从应用安全防护角度出发提出了安全机制检测方法,并从检测手段和检测要点两方面详细描述了检测方法。最后,综合静态分析、渗透测试、安全机制检测的思想,进行了测试案例分析。文中所提出的测试方案和测试方法,能够全面有效地检测移动应用可能存在的安全风险,为上线前安全测评与加固提供了技术指导。
|
| 关 键 词: | 电力移动应用 风险分析 安全测试 |
| 收稿时间: | 2018/3/20 0:00:00 |
| 修稿时间: | 2018/4/28 0:00:00 |
Research on Security Testing Technology of Mobile Application in Power System |
| |
| Authors: | GUO Jing JIANG Haitao WANG Ziying |
| |
| Affiliation: | State Grid Power System Artificial Intelligence Joint Laboratory(State Grid Jiangsu Electric Power Co., Ltd. Research Institute), Nanjing 211103, China |
| |
| Abstract: | This paper first describes the development and characteristics of mobile application in power system,and analyzes the security risks faced by clients,servers,data transmission and management.Then,aiming at the security characteristics of mobile clients,a security mechanism detection method is put forward from the perspective of application security protection,and the detection method is described in detail from two aspects of detection means and detection points.Finally,comprehensive static analysis and penetration test method,the APP security test was carried out.The test scheme and test method proposed in this paper can find the security risk in mobile application comprehensively and efficiently.It provides technical guidance for pre-line safety evaluation. |
| |
| Keywords: | power system security test security mechanism |
| 本文献已被 CNKI 等数据库收录! |
| 点击此处可从《》浏览原始摘要信息 |
|
点击此处可从《》下载全文 |
|
