Abstract: Strong design and implementation of communication protocols is of vital importance to network security which has already drawn wide attention of the whole society.In this paper，an extended constructed type algebra is used to model the protocols.Based on the model，an analysis of consistency and completeness is proposed to find the potential vulnerability of protocols.A method to test whether the implementation of system can resist those attacks resulting from the vulnerabilities similar to testing the conformity of protocols is given.A distributed test platform KD-TclRunner is developed to test the vulnerability of the communication devices made by famous vendors at home and abroad.

Key words: constructed type algebra, vulnerability testing, distributed testing platform

摘要： 网络安全问题已引起人们的广泛关注，通信协议设计和实现的健壮与否对于网络安全至关重要。使用扩展了的构造类别代数描述协议规范，基于该描述，从一致性和完备性角度对协议可能存在的漏洞进行分析；系统地给出了一种针对潜在漏洞进行脆弱性测试的测试方法，使用类似于协议测试的方法测试实现系统能否抵御针对该漏洞的攻击。实现了一个分布式的协议脆弱性测试平台KD-TclRunner，对国内外著名厂商的通信设备进行脆弱性测试。

关键词: 构造类别代数, 脆弱性测试, 分布式测试平台