本文選題：網(wǎng)絡(luò)安全 + 漏洞掃描　； 參考：《北京郵電大學(xué)》2014年碩士論文

【摘要】：開(kāi)放和共享的現(xiàn)代互聯(lián)網(wǎng)精神,在讓網(wǎng)絡(luò)世界變得豐富多彩的同時(shí),也將網(wǎng)絡(luò)安全問(wèn)題擺在了每個(gè)人的面前,安全問(wèn)題已經(jīng)造成了巨大的損失。漏洞掃描技術(shù)是一種事先主動(dòng)完善系統(tǒng)從而預(yù)防攻擊的安全防御方法,逐漸成為保障網(wǎng)絡(luò)安全不可或缺的一部分。現(xiàn)在行業(yè)內(nèi)已有多種漏洞掃描產(chǎn)品存在,但這些產(chǎn)品由于其功能特性、執(zhí)行性能等限制大多只適用于單機(jī)部署、小規(guī)模掃描的應(yīng)用場(chǎng)景,需要研究并實(shí)現(xiàn)一種適用于大規(guī)模網(wǎng)絡(luò)資產(chǎn)安全狀態(tài)評(píng)估的漏洞掃描器,以實(shí)現(xiàn)企業(yè)級(jí)網(wǎng)絡(luò)資產(chǎn)安全狀態(tài)評(píng)估的應(yīng)用需求,為企業(yè)安全風(fēng)險(xiǎn)防御提供可靠的基礎(chǔ)數(shù)據(jù)。 本文針對(duì)大規(guī)模網(wǎng)絡(luò)漏洞掃描這一應(yīng)用需求,基于漏洞掃描技術(shù),利用新興的云計(jì)算技術(shù),并結(jié)合RESTful Web Services技術(shù),針對(duì)大規(guī)模網(wǎng)絡(luò)漏洞掃描的應(yīng)用場(chǎng)景,設(shè)計(jì)并實(shí)現(xiàn)了云漏洞掃描平臺(tái)人機(jī)交互與開(kāi)放接口子系統(tǒng),作為基于云的漏洞掃描平臺(tái)的子系統(tǒng)。 本文首先對(duì)網(wǎng)絡(luò)漏洞掃描技術(shù)以及掃描插件開(kāi)發(fā)技術(shù)進(jìn)行了研究,對(duì)掃描引擎關(guān)鍵技術(shù)、工作原理和機(jī)制進(jìn)行了詳細(xì)的分析。其次,總結(jié)了大規(guī)模網(wǎng)絡(luò)漏洞掃描的應(yīng)用場(chǎng)景的特殊性,分析網(wǎng)絡(luò)漏洞掃描器的需求,分析用戶的需求和使用習(xí)慣,完成人機(jī)交互界面的設(shè)計(jì),并使用Ruby On Rails框架實(shí)現(xiàn)該功能。再次,完成了RESTful Web Services開(kāi)放接口的設(shè)計(jì)與實(shí)現(xiàn),讓第三方應(yīng)用以及非瀏覽器用戶可以使用漏洞掃描服務(wù),并使用HTTPS安全傳輸來(lái)保護(hù)用戶的數(shù)據(jù)。最后本文實(shí)現(xiàn)將云漏洞掃描平臺(tái)人機(jī)交互與開(kāi)放接口子系統(tǒng)部署在云平臺(tái)中,并與基于云的漏洞掃描平臺(tái)的其他模塊進(jìn)行聯(lián)調(diào)與測(cè)試,測(cè)試結(jié)果說(shuō)明了本文研究的云漏洞掃描平臺(tái)人機(jī)交互與開(kāi)放接口子系統(tǒng)具有良好的可用性。
[Abstract]:The open and shared spirit of modern Internet makes the network world rich and colorful, but also puts the network security problem in front of everyone. The security problem has caused huge losses. Vulnerability scanning is a kind of security defense method which can preactively perfect the system and prevent attacks. It has gradually become an indispensable part of the network security. At present, there are many kinds of vulnerability scanning products in the industry, but most of these products are only suitable for single-machine deployment and small-scale scanning applications due to their functional characteristics and performance constraints. It is necessary to study and implement a vulnerability scanner suitable for large-scale network asset security state assessment in order to meet the application requirements of enterprise network asset security state assessment and provide reliable basic data for enterprise security risk defense. In this paper, aiming at the application requirement of large-scale network vulnerability scanning, based on vulnerability scanning technology, using the emerging cloud computing technology and combining with RESTful Web Services technology, this paper aims at the application scenario of large-scale network vulnerability scanning. The man-machine interaction and open interface subsystem of the cloud vulnerability scanning platform is designed and implemented, which is used as the subsystem of the cloud-based vulnerability scanning platform. In this paper, the network vulnerability scanning technology and scanning plug-in development technology are studied, and the key technology, working principle and mechanism of scanning engine are analyzed in detail. Secondly, the particularity of the application scene of large-scale network vulnerability scanning is summarized, the requirement of network vulnerability scanner is analyzed, the user's needs and usage habits are analyzed, the design of man-machine interface is completed, and the Ruby on Rails framework is used to realize the function. Thirdly, the design and implementation of RESTful Web Services open interface is completed, which enables third-party applications and non-browser users to use vulnerability scanning services, and uses HTTPS secure transfer to protect users' data. Finally, this paper implements the deployment of the Human-Computer interaction and Open Interface Subsystem of the Cloud vulnerability scanning platform in the Cloud platform, and combines and tests with the other modules of the cloud-based vulnerability scanning platform. The test results show that the Human-Computer interaction and Open Interface Subsystem of the cloud vulnerability scanning platform studied in this paper has good usability.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 沈陽(yáng),黃厚寬;網(wǎng)絡(luò)安全漏洞掃描器[J];電腦與信息技術(shù);2004年04期

2 蓋玲;;基于云計(jì)算的安全服務(wù)研究[J];電信科學(xué);2011年06期

3 張文海;;網(wǎng)絡(luò)安全漏洞掃描技術(shù)研究[J];福建電腦;2011年10期

4 謝惠瓊;凌捷;;插件技術(shù)在漏洞分類掃描中的應(yīng)用[J];廣東工業(yè)大學(xué)學(xué)報(bào);2011年01期

5 馬睿;;淺談?dòng)?jì)算機(jī)網(wǎng)絡(luò)安全的防控[J];北方經(jīng)貿(mào);2011年11期

6 劉娜;周平;張順利;;云計(jì)算互操作性分類研究[J];信息技術(shù)與標(biāo)準(zhǔn)化;2012年Z1期

7 王良;;漏洞掃描系統(tǒng)設(shè)計(jì)與應(yīng)用[J];信息安全與技術(shù);2011年Z1期

8 洪宏,張玉清,胡予濮,戴祖鋒;網(wǎng)絡(luò)安全掃描技術(shù)研究[J];計(jì)算機(jī)工程;2004年10期

9 張建勛;古志民;鄭超;;云計(jì)算研究進(jìn)展綜述[J];計(jì)算機(jī)應(yīng)用研究;2010年02期

10 潘冰;;基于Rails的RESTful Web Service研究與實(shí)現(xiàn)[J];計(jì)算機(jī)應(yīng)用與軟件;2010年10期

，

本文編號(hào)：1855307