| 新型主动式漏洞检测系统 |
| |
| 引用本文: | 赖维莹,陈秀真,李建华. 新型主动式漏洞检测系统[J]. 计算机工程, 2008, 34(18): 161-163 |
| |
| 作者姓名: | 赖维莹 陈秀真 李建华 |
| |
| 作者单位: | 上海交通大学电子信息与电气工程学院,上海,200240;上海交通大学电子信息与电气工程学院,上海,200240;上海交通大学电子信息与电气工程学院,上海,200240 |
| |
| 摘 要: | 介绍了一种采用C/S结构的新型主动式漏洞检测系统。该系统利用了OVAL漏洞检测定义,包括检测代理和控制台两大模块。其中,检测代理是基于OVAL Schema的漏洞扫描器,能在不对本地计算机系统和网络系统造成任何损害的情况下,全面有效地检测主机漏洞,并将漏洞信息结果上报给控制台,而控制台端实现了同时控制局域网内多台主机的漏洞扫描,并将整个局域网的漏洞信息汇总。大量实验测试证明,该系统是可行且具有先进性的。
|
| 关 键 词: | 主动式漏洞检测 检测代理 控制台 漏洞扫描 |
| 修稿时间: | |
Novel Active Vulnerability Detection System |
| |
| LAI Wei-ying,CHEN Xiu-zhen,LI Jian-hua. Novel Active Vulnerability Detection System[J]. Computer Engineering, 2008, 34(18): 161-163 |
| |
| Authors: | LAI Wei-ying CHEN Xiu-zhen LI Jian-hua |
| |
| Affiliation: | (School of Electronic, Information and Electrical Engineering, Shanghai Jiaotong University, Shanghai 200240) |
| |
| Abstract: | The paper proposes a novel active vulnerability detection system based on C/S mode. This system is composed of two modules: agent and console. The detection agent, which is a vulnerability scanner based on OVAL Schema, can give an effective and all-sided vulnerability scan as well as reporting the result to the console without any damage to the network. At the same time, the console realizes remote control against the process of scans on several computers and gathering of scan results of the whole network. The test result proves that this system is feasible and advanced. |
| |
| Keywords: | active vulnerability detection detection agent console vulnerability scan |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
