【摘要】：隨著信息通信技術(shù)的快速發(fā)展,通信網(wǎng)絡(luò)數(shù)據(jù)化、終端的智能化以及業(yè)務(wù)的多媒體化都給網(wǎng)絡(luò)安全運(yùn)營(yíng)帶來(lái)新的挑戰(zhàn)。電信運(yùn)營(yíng)商作為國(guó)家基礎(chǔ)網(wǎng)絡(luò)運(yùn)營(yíng)企業(yè),在網(wǎng)絡(luò)安全方面承擔(dān)著重要的職責(zé)和責(zé)任。特別是在2008年三大運(yùn)營(yíng)商相繼開通3G、4G移動(dòng)寬帶業(yè)務(wù)之后,互聯(lián)網(wǎng)業(yè)務(wù)發(fā)展進(jìn)入快車道。運(yùn)營(yíng)商為滿足用戶不斷增長(zhǎng)的業(yè)務(wù)需求,對(duì)各類信息服務(wù)系統(tǒng)加班加點(diǎn)進(jìn)行建設(shè),但由此所引入的網(wǎng)絡(luò)信息安全問(wèn)題也隨之增長(zhǎng)。為應(yīng)對(duì)互聯(lián)網(wǎng)安全挑戰(zhàn),企業(yè)也部署相應(yīng)網(wǎng)絡(luò)安全產(chǎn)品。這些安全產(chǎn)品可以從一定程度或某一個(gè)單獨(dú)的網(wǎng)絡(luò)安全方向滿足企業(yè)的安全需求,但無(wú)法滿足管理員對(duì)于網(wǎng)絡(luò)系統(tǒng)整體安全狀況的掌握需求。一方面是由安全產(chǎn)品相互獨(dú)立,缺乏集中統(tǒng)一管理;另一方面,由于現(xiàn)有資產(chǎn)脆弱性發(fā)現(xiàn)能力完全依賴于安全掃描產(chǎn)品特征庫(kù)更新及時(shí)性和主動(dòng)性,如果漏洞在互聯(lián)網(wǎng)公布和安全產(chǎn)品更新的窗口期內(nèi)不能及時(shí)發(fā)現(xiàn)并通知安全管理員,管理員也無(wú)法做到及時(shí)防護(hù),這將給企業(yè)帶來(lái)極大網(wǎng)絡(luò)安全隱患;更重要的是,網(wǎng)絡(luò)安全漏洞管理工作應(yīng)具有全生命周期管控的特點(diǎn),確保企業(yè)每發(fā)現(xiàn)一個(gè)安全漏洞都應(yīng)該是閉環(huán)管理。但目前此項(xiàng)工作缺少自動(dòng)化管理的手段和方法,這就造成在管理工作中很容易遺漏或出錯(cuò)。加強(qiáng)網(wǎng)絡(luò)安全漏洞管理是電信網(wǎng)絡(luò)安全工作中極為重要的環(huán)節(jié)之一,也是主動(dòng)防御網(wǎng)絡(luò)安全事件威脅,降低網(wǎng)絡(luò)安全事件帶來(lái)的影響和損失的重要手段。本論文目的在于設(shè)計(jì)一套安全漏洞管理系統(tǒng)模塊來(lái)解決上述問(wèn)題。系統(tǒng)從寧夏電信的實(shí)際安全管理需求出發(fā),設(shè)計(jì)并實(shí)現(xiàn)了基于通用的SSM框架的漏洞管理模塊,該系統(tǒng)具有基礎(chǔ)信息管理、漏洞采集與錄入、漏洞管理、日志管理、系統(tǒng)管理等功能。漏洞管理模塊通過(guò)實(shí)時(shí)采集互聯(lián)網(wǎng)預(yù)警漏洞信息、電信內(nèi)網(wǎng)的主機(jī)漏洞掃描結(jié)果、應(yīng)用軟件漏洞掃描結(jié)果、應(yīng)用滲透測(cè)試結(jié)果等漏洞信息,與系統(tǒng)所提供安全服務(wù)的對(duì)象,即電信資產(chǎn)的漏洞信息進(jìn)行統(tǒng)一關(guān)聯(lián)、展現(xiàn)使得管理人員可以及時(shí)、準(zhǔn)確掌握全網(wǎng)的安全健康狀況。系統(tǒng)基于Eclipse可視化Java集成開發(fā)環(huán)境。使用SSM集成框架,實(shí)現(xiàn)系統(tǒng)的控制層代碼邏輯,后臺(tái)數(shù)據(jù)庫(kù)采用PostgreSQL數(shù)據(jù)庫(kù)管理系統(tǒng),WEB應(yīng)用使用了Apache Tomcat平臺(tái)來(lái)部署。最后對(duì)實(shí)現(xiàn)的系統(tǒng)進(jìn)行全面的功能測(cè)試和性能測(cè)試,保證所實(shí)現(xiàn)的漏洞管理模塊能夠滿足寧夏電信當(dāng)前安全管理工作需要。
[Abstract]:With the rapid development of information and communication technology, communication network data, terminal intelligence and multimedia service bring new challenges to network security operation. Telecom operators, as national basic network operators, assume important responsibilities and responsibilities in network security. Especially after the three major operators launched 3G 4G mobile broadband service in 2008, the Internet service developed into the fast lane. In order to meet the increasing business demand of users, operators build various information service systems overtime, but the problem of network information security is also increasing. In order to deal with Internet security challenges, enterprises also deploy the corresponding network security products. These security products can meet the security requirements of enterprises to a certain extent or a single network security direction, but can not meet the needs of administrators for the overall security of the network system. On the one hand, security products are independent of each other and lack of centralized and unified management; on the other hand, because the existing asset vulnerability detection capability is completely dependent on the timeliness and initiative of updating the security scanning product signature database, If the vulnerability can not be detected and notified to the security administrator in time when the Internet is published and the security product is updated, the administrator will not be able to protect it in a timely manner, which will bring a great potential network security hazard to the enterprise; more importantly, The management of network security vulnerabilities should have the characteristics of life-cycle management and ensure that every security vulnerability found by an enterprise should be closed loop management. But at present, this work lacks the means and methods of automatic management, which makes it easy to omit or make mistakes in the management work. To strengthen the management of network security vulnerabilities is one of the most important links in the work of telecommunication network security. It is also an important means to actively defend against the threat of network security events and reduce the impact and loss of network security incidents. The purpose of this paper is to design a set of security vulnerability management system module to solve the above problems. Based on the actual security management requirements of Ningxia Telecom, the system designs and implements a vulnerability management module based on the general SSM framework. The system has basic information management, vulnerability collection and input, vulnerability management, log management. System management and other functions. The vulnerability management module collects the Internet alarm vulnerability information in real time, the host computer vulnerability scan result of the telecommunication intranet, the application software vulnerability scan result, the application penetration test result and so on vulnerability information, and the object of the security service provided by the system. That is to say, the vulnerability information of telecom assets is associated with each other so that managers can grasp the safety and health status of the whole network in time and accurately. The system is based on Eclipse visual Java integrated development environment. The SSM integrated framework is used to realize the control layer code logic of the system, and the background database is deployed using the Apache Tomcat platform in the PostgreSQL database management system. Finally, the function and performance of the implemented system are tested to ensure that the implemented vulnerability management module can meet the current security management needs of Ningxia Telecom.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2017
【分類號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 肖祥林;;基于SSM的畢業(yè)設(shè)計(jì)管理系統(tǒng)設(shè)計(jì)與實(shí)現(xiàn)[J];電子科技;2016年10期

2 白嘎力;;安全應(yīng)急響應(yīng)中心(SRC)是如何運(yùn)作的?[J];中國(guó)信息安全;2016年07期

3 榮艷冬;;關(guān)于Mybatis持久層框架的應(yīng)用研究[J];信息安全與技術(shù);2015年12期

4 徐剛;楊林海;;企業(yè)網(wǎng)絡(luò)安全控制技術(shù)分析與應(yīng)用[J];信息與電腦(理論版);2015年04期

5 董紀(jì)英;燕志偉;梁正玉;;SQLite、MySQL、PostgreSQL關(guān)系型數(shù)據(jù)庫(kù)管理系統(tǒng)比較[J];電腦編程技巧與維護(hù);2014年14期

6 李燕;曹寶香;馬兆豐;楊義先;鈕心忻;;關(guān)聯(lián)分析算法在安全管理平臺(tái)中的研究與應(yīng)用[J];計(jì)算機(jī)技術(shù)與發(fā)展;2013年10期

7 羅麗娟;陳永政;;淺談MVC框架模式[J];科學(xué)咨詢(科技·管理);2013年02期

8 鄒祖軍;周偉;;信息系統(tǒng)安全審計(jì)機(jī)制的實(shí)現(xiàn)[J];信息技術(shù);2012年11期

9 徐雯;高建華;;基于Spring MVC及MyBatis的Web應(yīng)用框架研究[J];微型電腦應(yīng)用;2012年07期

10 徐錫霆;;以信息系統(tǒng)平臺(tái)的安全為視角淺析“漏洞”的危害及防范[J];信息與電腦(理論版);2012年01期

相關(guān)碩士學(xué)位論文 前3條

1 曠慶圓;安全信息與事件管理關(guān)鍵技術(shù)研究[D];北京郵電大學(xué);2015年

2 郭俸明;漏洞掃描工具原理與實(shí)現(xiàn)[D];中國(guó)地質(zhì)大學(xué)（北京）;2008年

3 金鏡;面向方面的軟件進(jìn)化研究[D];天津大學(xué);2006年

，

本文編號(hào)：2212035