摘要
提出了一个基于CVE标准和漏洞库的网络隐患扫描系统模型,描述了一个基于该模型的“安拓”网络隐患扫描系统的组成结构和实现机制。讨论了该系统实现中的关键技术及其解决方法,包括:漏洞库的设计实现、隐患扫描手段的升级维护机制、系统硬件化技术及自身的安全机制等。归纳了该系统的特点及应用前景,并总结了今后的研究方向。
A model is proposed for the network Vulnerabilities Scanner system based on″Common Vulnerabilities and Exposures″and Vulnerabilities Database in this paper.With this model,the components and implementation of a network scanner system,iTOP,are described.Some key technical problems and their solutions,which include the design and implementation of Vulnerabilities Database,the technique of hardware -based design,the upgrade and maintenance mechanism of vulnerabilities scanner segment ,and the mechanism of system security,are also discussed.The characteristic,consistency,the application foreground and the studying way in the future of this system are also summarized.
出处
《计算机工程与应用》
CSCD
北大核心
2002年第1期11-13,共3页
Computer Engineering and Applications
基金
国家863高技术研究发展计划"信息安全技术应急项目"基金(编号:863-301-05-01)
国信安办计算机网络安全预警技术研究项目基金(编号:2000-技-030)
关键词
计算机网络
网络安全隐患
漏洞库
CVE标准
隐患扫描
安全机制
Computer network,Network Security Vulnerabilities,Vulnerabilities Database,CVE Standard,Vulnerabilities Scanner,Security mechanism
