System and method for evaluating security and survivability of network information system

Abstract

The system includes information acquisition module, module for detecting leaking hole, testing verification module, module and database for evaluating security and survivability; the information acquisition module sends collected information of target system to the module for detecting leaking hole; the module for detecting leaking hole carries out detecting leaking hole for target system; the testing verification module carries out test and verification for leaking hole in safety existed in target object; module for evaluating security and survivability evaluates security and survivability for target system based on information of leaking hole. Simulating man induced attack to reflect real status of object to be measured, using active attack to carry out testing, the invention combines static analysis with dynamic test, giving out qualitative and quantitative evaluation and suggestion for survivability of system.

Description

technical field

[0001] The invention relates to a system and method for evaluating the survivability of a computer network information system in the technical field of network information security, in particular to a system and method for evaluating the security and survivability of a network information system based on an intrusion scenario test. Background technique

[0002] In the research field of network information system security technology, it can be roughly divided into three stages from the division of strategies to deal with intrusion: the first stage is to prevent intrusion, mainly researching trusted computing foundation, access control and physical security, and multi-level security. , password use, etc.; the second stage is how to detect and reduce losses after the intrusion occurs, mainly researching firewalls, intrusion detection systems, border controllers, virtual private networks, public key heterogeneous systems, etc.; the last stage is when the intrusion...

Images