期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

移动终端安全要求测评技术研究及应用 被引量:1

Research and Application of Security Requirements Testing Technology for Mobile Terminals
下载PDF
导出
摘要 《移动智能终端安全能力技术要求》是工信部在2013年颁布的移动终端安全的行业标准.通过分析和梳理上述移动终端安全要求的测评现状,并针对其中存在的问题,设计了基于PC客户端配套Android代理的自动化安全测评模型架构,实现了安全要求的批量自动化测评、测评行为全程监控,有效降低了测评人员技术门槛,提升了测评效率和测评质量;设计了云管理平台,研究实现了基于标签的测评数据多维度分析机制,有效提升了安全测评数据的统计分析效率. “Technical Requirements for Security Capability of Smart Mobile Terminal”is the industry standard for the mobile terminal security which is promulgated by the Ministry of Industry and Information Technology in 2013.By analyzing the status and problems of security testing,we designed a security testing model based on the PC client and the testing agent so as to solve these problems,which realized the batch automatic script running and the security testing monitoring,effectively reduced the threshold of the security testing and improved the efficiency and quality of the security testing.This paper designed the cloud management platform,and researched the mechanism such as the testing data analyzing mechanism based on the label,which effectively improved the statistical analysis efficiency of the testing output data.
作者 张艳 彭华熹 何申 Zhang Yan;Peng Huaxi;He Shen(Department of Security Technology,China Mobile Research Institute,Beijing 100032)
机构地区 中国移动通信有限公司研究院安全技术研究所
出处 《信息安全研究》 2020年第5期427-432,共6页 Journal of Information Security Research
关键词 移动终端 安全能力 安全要求 安全测评 测评模型 mobile terminal security capability security requirements security testing testing model
分类号 TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献5

二级参考文献22

  • 1沈永清,徐中伟.通用嵌入式系统软件测试平台的设计[J].计算机工程与应用,2007,43(15):83-85. 被引量:10
  • 2GB 17859-1999.计算机信息系统 安全保护等级划分准则[S]..1999
  • 3Han Bing.Analysis and Research of System Security Based on Android[].FifthInternational Conference on Intelligent Computation Technology and Automation.2012
  • 4ENCK,W.,ONGTANG,M,MCDANIEL,P.Understanding Android Security[].IEEE Security and Privacy.2009
  • 5Common Criteria. Common Criteria for Information Technology Security Evaluation, Part 2: Security functional components Version 3.1, Revision 4[EB/OL]. [2015-05-27]. http://www.commoncriteriaponal.org/files/ ccfiles/CCPART2V3.1R4.pdf.
  • 6Common Criteria. Common Criteria for Information Technology Security Evaluation, Part 3: Security assurance components Version 3.1, Revision 4[EB/OL]. [2015-05-28]. http://www.commoncriteriaportal.org/files/ ccfiles/CCPART3V3.1R4.pdf.
  • 7Common Criteria. Common Criteria for Information Technology Security Evaluation, Part 1: Introduction and general model Version 3.1, Revision 4[EB/OL]. [2015- 05-28]. http://www.commoncriteriaportal.org/files/ccfiles/ CCPART 1V3.1R4.pdf.
  • 8Common Criteria. Common Criteria for Information Technology Security Evaluation, Evaluation methodology Version 3.1, Revision 4[EB/OL]. [2015-05-29]. http://www. commoncriteriaportal.org/files/ccfiles/CEMV3.1R4.pdf.
  • 9MAP. Frequently Asked Questions for NIAP/CCEVS and the Use of Common Criteria in the US [EB/OL]. [2015- 05-30]. https://www.niap-ccevs.org/NIAP_Evolution/ faqs/niap_evolution/FAQs28Mar_v6.pdf.
  • 10NIAP. Protection Profile for Mobile Device Fundamentals Version 2.0[EB/OL]. [2015-05-30]. https://www.niap- ccevs.org/pp/pp rod_v2.0.pdf.

共引文献146

同被引文献13

引证文献1

信息安全研究
2020年 第5期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部