Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Safety protection capability detection system, method, device, equipment and medium

A security protection capability and security protection technology, applied in the field of network security, can solve problems such as the inability to test the effect of security protection

Pending Publication Date: 2022-04-15
NSFOCUS INFORMATION TECHNOLOGY CO LTD +1
View PDF0 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The problem existing in the existing technology is that it is impossible to test the effect of safety protection. At present, there is an urgent need for a technical solution that can detect the safety protection ability of safety protection equipment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Safety protection capability detection system, method, device, equipment and medium
  • Safety protection capability detection system, method, device, equipment and medium
  • Safety protection capability detection system, method, device, equipment and medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0066] figure 1 A schematic structural diagram of a security protection capability detection system provided by an embodiment of the present invention, the system includes: a scanning source device 11, a security protection device 12, and a target side device 13; the scanning source device 11 includes a vulnerability scanning module 111 and an escape scheduling module 112;

[0067] The vulnerability scanning module 111 is configured to send a vulnerability scanning task to the escape scheduling module 112, wherein the vulnerability scanning task carries vulnerability identification information to be scanned;

[0068] The evasion scheduling module 112 is configured to obtain an evasion technique interface corresponding to the vulnerability to be scanned according to the vulnerability identification information to be scanned, and send the evasion technique interface to the vulnerability scanning module 111;

[0069] The vulnerability scanning module 111 is configured to use the...

Embodiment 2

[0077] When detecting the security protection capability of the security protection device, if the vulnerability to be scanned supports self-negotiation of the evasion technique, the solution of the foregoing embodiment may be used to detect the security protection capability of the security protection device. However, for vulnerabilities that do not support self-negotiation of evasion techniques, evasion strategy negotiation is required. After the negotiation is completed, the security protection capability of the security protection device can be tested. Therefore, for vulnerabilities that do not support self-negotiation of evasion techniques, in order to detect the security protection capabilities of security protection equipment, on the basis of the above-mentioned embodiments, in the embodiments of the present invention, as follows image 3 As shown, the scan source device also includes a policy server 114;

[0078] The escape scheduling module 112 is further configured t...

Embodiment 3

[0087] In order to measure the protective effect of the safety protection equipment more directly, on the basis of the above-mentioned embodiments, in the embodiment of the present invention, such as Figure 5 As shown, the target side device 13 includes an asset target library 133;

[0088]The vulnerability scanning module 111 is further configured to send a vulnerability scanning task to the escape scheduling module 112, wherein the vulnerability scanning task carries the identification information of the vulnerability to be scanned in the asset target library 133;

[0089] The evasion scheduling module 112 is configured to obtain an evasion technique interface corresponding to the vulnerability to be scanned according to the vulnerability identification information to be scanned, and send the evasion technique interface to the vulnerability scanning module 111;

[0090] The vulnerability scanning module 111 is configured to use the evasion technique interface to transmit th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a security protection capability detection system, method, device and equipment and a medium, a vulnerability scanning module is used for sending a vulnerability scanning task to an escape scheduling module, and the vulnerability scanning task carries vulnerability identification information to be scanned; the escape scheduling module is used for acquiring an escape technology interface corresponding to the vulnerability to be scanned according to the identification information of the vulnerability to be scanned, and sending the escape technology interface to the vulnerability scanning module; the vulnerability scanning module is used for carrying out transmission processing on a scanning message corresponding to the vulnerability to be scanned by adopting the escape technology interface, and sending the scanning message after transmission processing to target side equipment through safety protection equipment; and receiving a feedback result responded by the target side equipment, and determining the safety protection capability of the safety protection equipment according to the feedback result. Therefore, a technical scheme capable of detecting the safety protection capability of the safety protection equipment is realized.

Description

technical field [0001] The present invention relates to the technical field of network security, in particular to a security protection capability detection system, method, device, equipment and medium. Background technique [0002] Vulnerability scanning refers to the detection of security vulnerabilities of target assets through scanning and other means based on the vulnerability database. The target assets are, for example, specified remote or local computer systems. Vulnerability scanning is a security detection behavior that discovers exploitable vulnerabilities, or called for penetration attacks. [0003] Traditional vulnerability scanning is used to assess the vulnerability of target assets. By detecting target vulnerability instances, quantitative risk assessment and related reports are given as evidence of asset external risk compliance. In the current network environment, in order to protect valuable assets, most security protection devices are deployed, such as f...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57
Inventor 李瀛叶建伟樊志甲
Owner NSFOCUS INFORMATION TECHNOLOGY CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com