本文選題：漏洞 + 漏洞庫��； 參考：《北京郵電大學(xué)》2015年碩士論文

【摘要】：飛速發(fā)展的互聯(lián)網(wǎng)技術(shù),正逐漸改變?nèi)藗兊纳願(yuàn)蕵贩绞?同時(shí)推動(dòng)了生產(chǎn)系統(tǒng)的更新?lián)Q代和生產(chǎn)方式的變革。然而生產(chǎn)力大大提高的同時(shí),網(wǎng)絡(luò)的脆弱性也將生產(chǎn)系統(tǒng)暴露給別有用心者,甚至導(dǎo)致災(zāi)難性的破壞。生產(chǎn)系統(tǒng)內(nèi)部若能有效地管理漏洞,并及時(shí)地推動(dòng)漏洞發(fā)布與修復(fù),脆弱性帶來的風(fēng)險(xiǎn)將大大降低。因此,研究企業(yè)安全漏洞管理方法,搭建標(biāo)準(zhǔn)統(tǒng)一的漏洞管理系統(tǒng),對于提高各廠商產(chǎn)品安全性具有重要意義。 本文首先介紹了當(dāng)今世界的網(wǎng)絡(luò)安全形勢,以及廠商建立安全漏洞庫的必要性,對比分析了國內(nèi)外知名漏洞庫的相關(guān)情況。明確了安全漏洞的定義,概括了漏洞的特點(diǎn)及漏洞分類,并介紹了國內(nèi)外權(quán)威的漏洞發(fā)布方式。另外,本文簡述了爬蟲的定義和網(wǎng)絡(luò)爬蟲原理,詳細(xì)介紹了Python腳本語言以及Python編寫爬蟲程序的可行性。這些理論是構(gòu)建安全漏洞庫的重要基礎(chǔ)。 其后,本文重點(diǎn)研究了主流漏洞庫的漏洞特征,設(shè)計(jì)了安全漏洞管理平臺(tái),并詳盡論述了漏洞管理平臺(tái)的組織架構(gòu)以及核心模塊的實(shí)現(xiàn)機(jī)制。首先編寫了漏洞管理平臺(tái)的漏洞爬取模塊,抓取目標(biāo)漏洞庫中的特定漏洞信息；利用目標(biāo)漏洞庫的分析結(jié)果,漏洞信息解析模塊進(jìn)行漏洞信息的內(nèi)容格式解析；最后借助數(shù)據(jù)庫操作模塊的Mysql程序,完成漏洞信息的本地化存儲(chǔ),保證目標(biāo)廠商漏洞的完整綜合呈現(xiàn)。 最后,本文設(shè)計(jì)了企業(yè)安全漏洞描述語言�；谠趯�(shí)習(xí)公司的漏洞處理工作,本文針對企業(yè)內(nèi)部漏洞處理流程,量身定制了一套漏洞描述的語言,規(guī)范了漏洞管理平臺(tái)中存儲(chǔ)的漏洞信息,實(shí)現(xiàn)了漏洞信息在企業(yè)內(nèi)部的無障礙流通。
[Abstract]:The rapid development of Internet technology, is gradually changing the way people live and entertainment, while promoting the upgrading of production systems and the transformation of production methods.However, while productivity increases greatly, the vulnerability of the network also exposes the production system to ulterior motives, even leading to catastrophic damage.The risk of vulnerability will be greatly reduced if the vulnerability can be managed effectively and the vulnerability can be published and fixed in time.Therefore, it is of great significance to study the methods of enterprise security vulnerability management and to set up a unified vulnerability management system.This paper first introduces the network security situation in the world today and the necessity for manufacturers to set up a security vulnerability library, and compares and analyzes the relevant situation of well-known vulnerability library at home and abroad.This paper clarifies the definition of security vulnerabilities, summarizes the characteristics and classification of vulnerabilities, and introduces the issuing methods of vulnerabilities at home and abroad.In addition, this paper briefly describes the definition of crawler and the principle of web crawler, and introduces in detail the Python script language and the feasibility of Python programming crawler program.These theories are the important foundation of constructing security vulnerability library.Then, this paper focuses on the vulnerability characteristics of the mainstream vulnerability library, designs a security vulnerability management platform, and discusses in detail the organizational structure of the vulnerability management platform and the implementation mechanism of the core modules.Firstly, the vulnerability crawling module of the vulnerability management platform is written to capture the specific vulnerability information in the target vulnerability library, and the content format of the vulnerability information is analyzed by using the analysis result of the target vulnerability library.Finally, with the help of the Mysql program of the database operation module, the localization storage of vulnerability information is completed to ensure the integrated presentation of the vulnerability of the target manufacturer.Finally, this paper designs the enterprise security vulnerability description language.Based on the vulnerability handling work in the internship company, this paper customizes a set of vulnerability description language for the internal vulnerability processing process of the enterprise, and standardizes the vulnerability information stored in the vulnerability management platform.Realized the loophole information in the enterprise internal barrier-free circulation.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2015
【分類號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前9條

1 鄭嵐;;Python訪問MySQL數(shù)據(jù)庫[J];電腦編程技巧與維護(hù);2010年06期

2 吳舒平;張玉清;;漏洞庫發(fā)展現(xiàn)狀的研究及啟示[J];計(jì)算機(jī)安全;2010年11期

3 李昀,李偉華;安全脆弱點(diǎn)描述語言[J];計(jì)算機(jī)工程與應(yīng)用;2002年12期

4 胡影;鄭康鋒;楊義先;;利用NVD漏洞數(shù)據(jù)庫挖掘網(wǎng)絡(luò)攻擊效果[J];計(jì)算機(jī)科學(xué);2008年03期

5 單國棟,戴英俠,王航;計(jì)算機(jī)漏洞分類研究[J];計(jì)算機(jī)工程;2002年10期

6 翟鈺,張玉清,武維善,胡建武;系統(tǒng)安全漏洞研究及數(shù)據(jù)庫實(shí)現(xiàn)[J];計(jì)算機(jī)工程;2004年08期

7 楊闊朝;蔣凡;;安全漏洞的統(tǒng)一描述研究[J];計(jì)算機(jī)工程與科學(xué);2006年10期

8 劉楠,羅軍勇,問斌;基于XML的安全漏洞通用描述語言[J];計(jì)算機(jī)應(yīng)用與軟件;2005年06期

9 張玉清;吳舒平;劉奇旭;梁芳芳;;國家安全漏洞庫的設(shè)計(jì)與實(shí)現(xiàn)[J];通信學(xué)報(bào);2011年06期

，

本文編號(hào)：1734813