摘要
网络扫描是网络安全评测和网络管理的重要手段。针对传统单点主动扫描方法与Zmap、Nmap工具均存在带宽资源利用受限、扫描效率低与CPU使用率高等问题,结合消息中间件的分布式网络扫描技术,提出一种分布式网络扫描架构和任务调度算法。利用消息中间件实现信息同步和扫描结果回传,并构建一种分布式网络扫描任务调度模型。实验结果表明,相比传统的单点主动扫描技术,基于消息中间件的分布式网络扫描技术在保证扫描准确率的同时,CPU使用率与扫描响应时间均降低约10%。
Network scanning is an important means of network security evaluation and network management.The traditional single-point active scanning method and tools including Zmap and Nmap suffer from limited bandwidth resource utilization,low scanning efficiency and significant CPU usage.This paper proposes a distributed network scanning architecture and task-scheduling algorithm based on the distributed network scanning technology of message middleware.The algorithm uses message middleware to synchronize information and return scanning results,and constructs a task-scheduling model for distributed network scanning.The experimental results show that compared with the traditional single-point active scanning technology,the proposed distributed network scanning technology based on message middleware can ensure the scanning accuracy while reducing CPU usage and scanning response time by about 10%.
作者
胡栋梁
秦晓军
王晓锋
HU Dongliang;QIN Xiaojun;WANG Xiaofeng(School of Internet of Things Engineering,Jiangnan University,Wuxi,Jiangsu 214122,China;Jiangnan Institute of Computing Technology,Wuxi,Jiangsu 214083,China)
出处
《计算机工程》
CAS
CSCD
北大核心
2020年第12期163-170,共8页
Computer Engineering
基金
国家自然科学基金(61672264,61972182)
国家重点研发计划(2016YFB0800803)。
关键词
网络扫描
端口扫描
消息中间件
分布式调度算法
网络仿真
network scanning
port scanning
message middleware
distributed scheduling algorithm
network simulation
