摘要
本文围绕网络主机漏洞扫描系统的设计和实现展开讨论。通过对黑客行为和典型攻击的分析,阐明了网络安全漏洞存在的必然原因,综述了计算机网络安全的现状。研究了漏洞扫描技术的具体概念,分类和局限性,阐明采用漏洞扫描技术的必要性。本文的重心在主机漏洞扫描系统的设计和实现上,包括系统结构的设计和实现,外部扫描模块和内部扫描模块的设计实现,以及漏洞库和规则库的的设计。最后提出了该系统还存在的不足以及需要进一步完善和扩展的设想。
This paper mainly discusses the design and development of a scanning s ystem for checking vulnerabilities on a Host computer that provides services via Internet. With the analysis of hackers' behaviors and typical attacks, generali zes the inevitability of the existence of security vulnerabilities and summarize s the general condition about network security. Then this paper describes the co ncept, category and limitation of the technique of scanning vulnerability, and a nalyzes the significance and inevitability of adopting this technique. This pape r puts the stress on how the scanning system was designed and implemented, inclu ding the design of the system structure, the design and development of internal and external scanning module, and the design of the vulnerability database and r ules database. At last, this paper presents some shortages of this system and pr oposes some advice to extend and perfect the system.
出处
《计算技术与自动化》
2003年第3期106-109,共4页
Computing Technology and Automation
基金
河南省科技攻关项目。编号:0111061200。
