Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Test system used for network safety product and test method thereof

A network security product and testing system technology, applied in the field of firewalls, unified threat management and security gateway testing devices, can solve the problems of low efficiency, unfamiliar target network, few network services, etc., and achieve the effect of improving efficiency

Inactive Publication Date: 2009-06-03
中国人民解放军信息安全测评认证中心
View PDF0 Cites 66 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] 1. Although manual testing can generate network traffic passing through security devices to conduct real-time online testing of management configuration vulnerabilities, there are many problems such as low efficiency, complex environment configuration, and difficulty in large-scale testing or repeated testing.
[0005] 2. Manual testing When conducting real-time online security testing on network security products, it will be limited by the conditions provided by the target network. For example, there are few network services provided and unfamiliar with the target network.
[0006] 3. Manual testing needs to use the equipment of the target network to participate in the test. When performing certain tests such as transmitting malicious code or executing malicious code, it may introduce security risks and cause damage to the target network.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Test system used for network safety product and test method thereof
  • Test system used for network safety product and test method thereof
  • Test system used for network safety product and test method thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0018] The present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

[0019] figure 1 It is a structural block diagram of the test system for testing firewall, UTM and security gateway of the present invention. The test system includes the following modules:

[0020] (1) Management module

[0021] This module provides a man-machine interface based on a graphical interface for the configuration of the test environment and parameters, as well as the customization of test strategies. Among them, the test environment and parameters include the IP addresses of the client and the server and the corresponding gateway IP addresses, as well as the network locations of the client and the server and the working mode (routing, switching or mixed mode) of the device under test, etc.; You can also customize the test strategy through the strategy template, select a specific test strategy according to the test conte...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a test system used for a network safety product and a test method thereof. The test system comprises a policy module, a session generating module, a result judge module and a reporting module. The test method comprises the steps as follows: (a) a data structure linked list of a test rule is filled to generate a concrete test case; (b) a client end and a server end program are constructed for respectively simulating hosts in two networks isolated by the network safety product and transferring a test plug-in corresponding to the test case by the client end and server endprogram to generate a corresponding data packet at real time to be transferred to a client end or a server end for sending, thereby generating a network session or a network attack session; and (c) atest result of the test case is judged according to the session finishing status and the network safety product behavioral parameter in the test case. The invention can realize the automatic real-time online detection of the policy configuration effectivity, the anti-attack penetration effectivity and the updating effectivity of the network safety product.

Description

technical field [0001] The invention belongs to the technical field of information security and relates to testing of network security products, in particular to a testing device and testing method for a firewall, a unified threat management (Universal Threat Management, UTM) and a security gateway. Background technique [0002] Network security products such as firewalls, UTMs, and security gateways are important components of computer network security systems and are deployed between different networks (such as trusted internal networks and untrusted public networks) or between network security domains. As the only mandatory access control point, these network security products monitor the network data passing through according to the network security policy, and they have strong anti-attack capabilities. However, even if these security products have passed the offline simulation test of the authoritative evaluation agency and obtained the certification certificate, they a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/26H04L12/66H04L29/06
Inventor 钟力唐云何金勇
Owner 中国人民解放军信息安全测评认证中心
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com