CPE specification-based vulnerability patch detection method and device

A detection method and detection device technology, applied in the field of information system security, can solve problems such as confusion in operation and maintenance, maintenance errors, etc., and achieve the effect of reducing cumbersomeness

Pending Publication Date: 2020-05-05
HARBIN ANTIY TECH
View PDF11 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] In the process of asset security operation and maintenance, there is a lack of unified and standardized identification for various assets, which can easily lead to confusion during operation and maintenance and errors during maintenance

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • CPE specification-based vulnerability patch detection method and device
  • CPE specification-based vulnerability patch detection method and device
  • CPE specification-based vulnerability patch detection method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0077] The specific implementation manners of a vulnerability patch detection method, device, electronic equipment and storage medium based on the CPE specification provided by the embodiments of the present invention will be described below with reference to the accompanying drawings.

[0078] figure 1 A flowchart of a vulnerability patch detection method based on the CPE specification provided by the embodiment of the present invention, such as figure 1 As shown, the method includes:

[0079] Step S11: Obtain asset information;

[0080] Use nmap+massscan software to detect assets on the managed and controlled intranet, and realize automatic network access to new network assets and related information.

[0081] Step S12: Construct the asset information according to the CPE specification, obtain the CPE information of the asset, and enter the CPE information into the asset database;

[0082] The assets that have saved specific information are stored in the warehouse. While ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a CPE specification-based vulnerability patch detection method and apparatus, an electronic device and a storage medium. The method comprises the steps of obtaining asset information; constructing the asset information according to CPE specifications to obtain CPE information of assets, and inputting the CPE information into an asset database; according to the CPE information, carrying out association analysis on vulnerability and assets to obtain preprocessed data; and analyzing and processing the preprocessed data to obtain a vulnerability patch detection report. According to the method, real-time detection of management and control intranet assets can be automatically carried out, and association analysis is established for the next step of automatic threat repairprocessing; the unified specification of CPE is followed, and general data analysis and solving are facilitated; in addition, the corresponding process of manual processing is replaced, and errors caused by cumbersome and complex manual operation are reduced.

Description

technical field [0001] The present invention relates to the technical field of information system security, in particular to a vulnerability patch detection method, device, electronic equipment and storage medium based on CPE specifications. Background technique [0002] At present, the asset operation and maintenance management system on the market relies on manual methods to manually enter the asset and its affected vulnerability patch information by comparing the asset model and the vulnerabilities affecting this type of asset with the corresponding patches. However, there are some problems with the above asset entry method: [0003] Inefficiency and insecurity of manual registration [0004] Due to the large volume and variety of current information on vulnerabilities and patches, when manually registering assets, simply relying on manual judgment of assets and their affected vulnerability patch information will not only be inefficient when screening vulnerabilities and...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57
CPCG06F21/577
Inventor 金楚迅何秀锋曾鹏孙云松肖新光
Owner HARBIN ANTIY TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap