摘要
安全漏洞是网络和信息安全的核心问题。安全漏洞导致的信息泄露等问题越来越严重,如何发现漏洞、修复漏洞、加强防御等成为安全研究的热点话题。文章利用fuzzing测试技术对网络设备支持的协议进行漏洞扫描,然后对扫描到的异常case进行逆向分析从而发现漏洞,并针对漏洞扫描和逆向分析的结果提出一种安全评估机制,对网络协议进行安全性评估,最终得到协议安全性评分。通过文章的研究,可以将存在安全隐患的安全要素通过总安全系数体现出来,实现了对网络设备的真实安全性能的准确评估。使用者根据网络设备的总安全系数将设备安全分为高、中、低3个等级。通过设备安全性的等级将设备使用在不同的网络环境当中,从而在很大程度上降低了网络安全事件发生的概率,对保障网络安全具有重大的意义。
Security vulnerability is the lifeline o f the study o f security issues,and it is the core issue of network and information security. Security vulnerabilities caused by information leakage, loss of money and other issues become more serious. How to find loopholes,repair vulnerabilities, strengthen defense and other issues becomes a hot area o f security research. This paper uses network vulnerability scanning device to scanning the network protocol,and then reverse analysis o f the abnormal situation to find the vulnerability. This paper proposes a security evaluation mechanism to assess the safet}^ o f network protocol. Finalty, this paper gets the score o f securit}^ protocol. Through the study of this paper,the safety factor o f safety hidden danger can be reflected by the total safety factor, and the accurate evaluation o f the real security performance o f the network equipment can be realized.According to the total safety factor o f the network equipment,the equipment safety is divided into high, medium and low. Through the securit}^ level o f the equipment used in different network environment, it can greatly reduce the occurrence of network security incidents. I t has great significance to protect the network security.
出处
《信息网络安全》
CSCD
2017年第3期59-65,共7页
Netinfo Security
基金
国家重点研发计划[SQ2016YFGX110124]
