摘要
高效发现所运维网络及其应用的安全隐患,并及时部署相应的安全防护手段是网络安全运维的关键。针对日益频发的网络安全威胁,本文提出了一种便捷、规范且可扩展的网络安全运维框架,并设计开发了相应的运维工具。该框架能够充分利用最新的网络安全漏洞情报,定制化地对所管理网络资产开展漏洞扫描,进而及早确认漏洞分布情况,能较大程度地提高网络安全运维的效率。通过针对某校园网进行测试,所设计开发的工具表现出较高准确性和效率。
It is the key of network security operation and maintenance to efficiently find the hidden security trouble in maintenancenetwork and deploy the corresponding security protection measures in time. In view of the increasingly frequent network securitythreats, this paper proposes a convenient, standardized and scalable network security operation and maintenance framework, designsand develops the corresponding maintenance tools. The framework can make full use of the latest network security vulnerabilities information, customized to manage network assets to realize vulnerability scanning and identify vulnerability distribution situation,which could greatly improve the efficiency of network security operation and maintenance. Through the test of a campus network,the designed tools show higher accuracy and efficiency.
出处
《智能计算机与应用》
2018年第1期123-126,130,共5页
Intelligent Computer and Applications
基金
国家自然科学基金(61502039)
北京信息科技大学大学生创新创业训练计划项目(5111723400)
北京信息科技大学教学改革研究专项招标课题(2017JGZB08)
关键词
安全运维
安全漏洞
渗透测试
合作共享
security operation
vulnerability
penetration
cooperation and sharing
