广西科学院学报Issue(3):211-216,6.
集约化信息安全测评平台设计
Design of An Integrated Information Safety Evaluation Platform
摘要
Abstract
Objective]To provide comprehensive support services for safety testing of informa-tion systems.[Methods]An integrated information safety evaluation platform has been de-signed by integrating multiple key detection technologies covering network host,database and Web application loophole etc.[Results]This platform integrates network attack and de-fense,demonstration,management safety testing,data safety testing,external safety testing and web content system testing,product and system testing,and information safety emergen-cy response.It also can provide testing and evaluation services to the departments of govern-ment and community for the function,performance,safety,and other aspects of their infor-mation systems.[Conclusion]The actual application of the platform meets the key demand of information system safety evaluation and provides the integrative evaluation of information safety.关键词
信息安全评测/漏洞管理/漏洞扫描Key words
information safety evaluation/vulnerability management/vulnerability scanning分类
信息技术与安全科学引用本文复制引用
杨雪君..集约化信息安全测评平台设计[J].广西科学院学报,2014,(3):211-216,6.基金项目
广西壮族自治区科学技术厅“计算机网络信息系统测评实验室”项目(桂科条字[2008]5号),“广西壮族自治区信息安全测评平台”项目(桂科条字[2010]12号)资助。 ()