摘要
在分析国内外研究现状的基础上,针对现有的漏洞库系统在漏洞信息的组织、使用等方面存在的不足,采用分布计算技术、数据库技术、Web技术实现了网络安全脆弱性分析与处置系统。该系统实现了基于Web的漏洞库(含补丁库)的访问与维护工具,便于获取相应漏洞的解决方案和下载相应的补丁程序,降低了系统维护的开销,提高了系统的可维护性;补丁推送程序实现了对系统补丁程序的远程推送、漏洞修补和补漏检测,提高了系统的自动化程度,为网络安全脆弱性处置提供了有力工具。
After analyzing the research situation and the shortcoming of vulnerabilities database system, the distributed computing technology, database technology and Web technology are used to implement NSVADS. Based on Web, it realizes the access and maintaining tool to vulnerabilities database. The solution to vulnerabilities and patches download can be disposed easily, and the cost of system maintainability can be reduced. Patches pushed modular can realize long-range patches pull, vulnerabilities mend, and vulnerabilities detection.It can improve the system's automatical vulnerabilities mend, and provide helpful tool for disposing the network security vulnerabilities.
出处
《国防科技大学学报》
EI
CAS
CSCD
北大核心
2004年第1期36-40,共5页
Journal of National University of Defense Technology
基金
国家863高技术资助项目(2001AA142030)