摘要
为满足网络安全管理需要,提出一种新的渗透测试方案自动生成方法。该方法利用被测试目标网络脆弱点间的逻辑关系,结合原子攻击知识库,通过前向广度优先搜索策略产生渗透攻击图,然后深度优先遍历渗透攻击图生成渗透测试方案,并基于该方法设计实现渗透测试预案自动生成原型系统。实例表明该方法能够有效生成可行的渗透测试方案。
In order to fulfil the need for network security management a new automatic generation method of penetration test programs was proposed in this paper.The penetration attack graph was set up with the inference relation of the vulnerabilities in the target network through the forward breadth-first search strategy which combined knowledge of atomic attack.The system produced penetration test programs through reverse depth-first traversal attack graph.A prototype of penetration test programs automatic generating system was designed and implemented on the basis of this method.The illustration indicates that this method can effectively set up the penetration test programs which provide a useful reference for network security analysis.
出处
《计算机应用》
CSCD
北大核心
2010年第8期2146-2150,共5页
journal of Computer Applications
关键词
渗透测试
攻击图
原子攻击
攻击推理
网络安全
penetration testing attack graph atomic attack attack reasoning network security