基于网络的安全评估技术分析与设计-软件工程专业论文.docxVIP

Research and Design on Security Evaluation bases on Network Spccialty: Tcchnology of Computcr Application Namc: Jianhong Wang Supcrvisor: Vicc-Prof :Fcixian Sun Abstract In order to eff巳，ctively assess the security of computer networks and thereby enable the network administrators to detect the vulnerablity and take repair as early as possib le，the key techno logies，such as the FCM -based network secu rity assessment model ，the romote host vulnerability detecition based on NASL，the survival of probing the network hosts based on ARP are studi ed，and on this basis ，disign and implement a FoundLight network security assessment system.Using the hierarchical strucωre to disign ，FCM -based network secur坷，sel巳cts evaluation factors comprehensively from management S巳curity(includin g vu ln erability scannin g)，physical secu ri ty，data authenticity，confidentiality，integrity，authentication mechanisms and implementation ， access control，auditing，and other security asp巳cts.Then ，standards of safety assessment are estabished according to secu ri ty level，evalu ation facotrs and application needs .And determing the measure in three ways :interviews，in sp巳cti ons and tests.Finally，the combination of qu alitative and qu antitative assessmet algorithm is used to evaluate the security of the target. The remote host vu lnerability detector b as巳d on NASL simulates the direct attack way of hacker，according to th e characteristi cs of known vulnerabilities ，use the plug-in technology to construct and send custom data packets using for v ulner abil ity.And then ，accordin g to the configuration inform ation of the con trol side and loads related plug-in in loading strategy，and esplain implementation.Finally，it determines the existence vu lnerability according to return informati on of the plug.There must be a physica l address when ARP requ est accures.According to this principle