协议脆弱性分析及其测试研究

计算机工程与应用 ›› 2008, Vol. 44 ›› Issue (13): 106-109.

协议脆弱性分析及其测试研究

石万清¹,张炜²

1.安徽大学电子科学与技术学院，合肥 230039
2.中国科学技术大学计算机系，合肥 230027

收稿日期:2007-12-27 修回日期:2008-03-21 出版日期:2008-05-01 发布日期:2008-05-01
通讯作者: 石万清

Vulnerability analysis and testing of protocols

SHI Wan-qing¹,ZHANG Wei²

1.School of Electronic Science and Technology，Anhui University，Hefei 230039，China
2.Department of Computer Science，University of Science and Technology of China，Hefei 230027，China

Received:2007-12-27 Revised:2008-03-21 Online:2008-05-01 Published:2008-05-01
Contact: SHI Wan-qing

摘要/Abstract

摘要： 网络安全问题已引起人们的广泛关注，通信协议设计和实现的健壮与否对于网络安全至关重要。使用扩展了的构造类别代数描述协议规范，基于该描述，从一致性和完备性角度对协议可能存在的漏洞进行分析；系统地给出了一种针对潜在漏洞进行脆弱性测试的测试方法，使用类似于协议测试的方法测试实现系统能否抵御针对该漏洞的攻击。实现了一个分布式的协议脆弱性测试平台KD-TclRunner，对国内外著名厂商的通信设备进行脆弱性测试。

关键词: 构造类别代数, 脆弱性测试, 分布式测试平台

Abstract: Strong design and implementation of communication protocols is of vital importance to network security which has already drawn wide attention of the whole society.In this paper，an extended constructed type algebra is used to model the protocols.Based on the model，an analysis of consistency and completeness is proposed to find the potential vulnerability of protocols.A method to test whether the implementation of system can resist those attacks resulting from the vulnerabilities similar to testing the conformity of protocols is given.A distributed test platform KD-TclRunner is developed to test the vulnerability of the communication devices made by famous vendors at home and abroad.

Key words: constructed type algebra, vulnerability testing, distributed testing platform

石万清¹,张炜². 协议脆弱性分析及其测试研究[J]. 计算机工程与应用, 2008, 44(13): 106-109.

SHI Wan-qing¹,ZHANG Wei². Vulnerability analysis and testing of protocols[J]. Computer Engineering and Applications, 2008, 44(13): 106-109.