Vulnerability scanning method and server and risk assessment system

A vulnerability scanning and server technology, which is applied in the field of information security, can solve the problems of slow matching of vulnerability characteristics and large storage space occupied by the vulnerability library, and achieve the effect of intuitive system risk assessment method, fast matching speed and reduced storage space
CN104144148AInactive Publication Date: 2014-11-12CHINA TELECOM CORP LTD
3 Cites 22 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
CHINA TELECOM CORP LTD
Publication Date
2014-11-12
Estimated Expiration
Not applicable · inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses a vulnerability scanning method and server and a risk assessment system and relates to the technical field of information security. The method comprises the steps that the server receives a scanning parameter configuration file from a client side and scans a scanned target according to the scanning parameter configuration file; the server extracts keywords from a scanning result; based on a bloom filter algorithm, the server performs quick matching on the extracted keywords and vulnerability features, compressed based on the bloom filter algorithm, in a vulnerability library, and the server determines whether vulnerability exists in the scanning result according to a matching result. As the vulnerability features are compressed based on the bloom filter algorithm, the know vulnerability features can be compressed into an m-bit array, and then storage space is reduced. In addition, a Hash operation is performed on the scanned keywords based on the bloom filter algorithm, matching is performed on Hash operation results and the m-bit array of the known vulnerability features, in this way, it can be determined whether the vulnerability exists in the scanning result, and the matching speed is higher.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the technical field of information security, in particular to a vulnerability scanning method, a server, and a risk assessment system. Background technique

[0002] On the modern information highway, the computer network has become a bridge for people to learn and communicate with the world. People share information resources through the network, which not only expands space and time, but also improves work or study efficiency. However, with the continuous expansion of the network scale, the number of network security incidents and the losses caused by them are also increasing. Especially viruses, hackers and other cyber crimes pose a great threat to computer network security. Therefore, while we are benefiting from the various benefits brought by computer networks, we must also face the severe test of network security.

[0003] In response to this situation, the industry proposes that vulnerability scanning technology can b...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More