Unlock instant, AI-driven research and patent intelligence for your innovation.

Software package naming matrix construction method and system

A construction method and software package technology, applied in the field of software package naming matrix construction, can solve problems such as incomplete vulnerability detection, and achieve the effect of improving accuracy and improving accuracy

Pending Publication Date: 2022-03-11
北京中科微澜科技有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In vulnerability management, especially when performing vulnerability detection on various software of different operating systems, the same software often has different names in different operations, and the vulnerability data disclosed in the vulnerability database cannot cover all aspects of a software. Different names, so there are often cases of incomplete vulnerability detection

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software package naming matrix construction method and system
  • Software package naming matrix construction method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] Exemplary embodiments of the present invention will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present invention are shown in the drawings, it should be understood that the invention may be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present invention and to fully convey the scope of the present invention to those skilled in the art.

[0032] In this application, when collecting vulnerability information, it is necessary to extract information about software packages in many different operating systems in real time, including the names of software packages. However, different operating systems have different naming methods for software packages, resulting in the different. For example, a major file type on the Windows operating system is regarded as a WPA file in the ACTWordP...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a software package naming matrix construction method. The method comprises the following steps: acquiring open source file information of all software of each operating system; analyzing upstream source information of all software according to the open source file information; if the software with different names of different operating systems has the same upstream source, considering that the different names correspond to the same software, establishing a mapping relation between the different names of the same software, and forming a software package naming matrix based on the mapping relation; and performing name matching of to-be-tested software on the basis of the software package naming matrix to obtain an alias of the to-be-tested software, and performing matching with vulnerability information of a known vulnerability database on the basis of the alias to make up for the problem that existing security vulnerabilities cannot be identified according to package names of the software.

Description

technical field [0001] The invention relates to the technical field of host and network security, in particular to a method and system for constructing a software package naming matrix. Background technique [0002] Vulnerability management generally scans each machine to obtain the vulnerability scanning result, identifies the vulnerability scanning result to find the vulnerability, and provides the corresponding repair method. Generally speaking, the vulnerability is determined according to the importance of network nodes and external threat events Fix priority. With the increasing number of networked machines such as virtual machines, servers, and hosts, more and more vulnerabilities are found. The risk level of vulnerabilities is different, the importance of each machine, and the impact of external events are also different. The processing of vulnerability processing The sequence and remediation strategies are also different, leading to the development of vulnerability ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57G06F8/41
CPCG06F21/577G06F8/427
Inventor 杨牧天刘梅罗天悦吴敬征王丽敏
Owner 北京中科微澜科技有限公司