定制论文·联系客服·网站地图·收藏本页·设为首页
计算机硕士当前位置:中国论文库 > 计算机论文 > 计算机硕士> 正文

计算机安全状态检测系统框架的研究

时间:2012-01-01作者:来源:中国论文库
字号:T|T

  【摘要】 在安全问题日益突出、计算机安全威胁的种类也突显多样化趋势的背景下,单个特定领域的信息安全产品已无法很有效和全面的保护计算机和网络。目前现有的计算机安全集成控制系统,基于可

标签:

  【摘要】 在安全问题日益突出、计算机安全威胁的种类也突显多样化趋势的背景下,单个特定领域的信息安全产品已无法很有效和全面的保护计算机和网络。目前现有的计算机安全集成控制系统,基于可信网络接入体系架构标准,已经大致上能整合各种安全领域内的一些专用产品,但大多缺乏可灵活配置的体系架构以及明确定义的规则引擎工作流模型,从而对计算机系统新威胁的分析、扩展以及与其他更广范围安全产品的可兼容性受到了限制。因此,建立一个可配置的基于规则的计算机安全检测系统框架十分必要。在此背景下,本文针对这些问题提出并开发了一个基于有穷自动机的计算机安全状态检测系统框架,支持按需对计算机安全状态检测工作流的配置和定义,实现对计算机系统的安全状态的判别,并隔离被认为有安全威胁的计算机系统接入网络的敏感区域,使系统具有良好的灵活性和兼容性。首先,本文对计算机系统所面临的各种风险进行了详细的分析,并将其进行归类。从中选择计算机安全状态检测系统框架可以涵盖的部分风险作为框架设计的最初输入。初步定义了计算机安全状态检测系统框架所应具有的基本特性,这些特性是后续进行需求分析与设计的基础。然后,本文基于用例技术进行了框架的需求分析,采用类图和顺序图对系统框架的用例实现进行建模,并对类的各个操作进行了基于自动机的形式化定义描述。在用例建模的过程中,结合了基于自动机的形式化定义描述,使其相对于普通的用例模型更具有一致性以及无二义性。接着,多维度地对计算机安全状态检测系统框架进行设计,包括分层视图、静态逻辑视图、动态逻辑视图、进程视图和部署视图。在计算机安全状态检测系统框架的设计过程中,考虑到框架的使用者应是处在不同的网络应用环境中。所以计算机安全状态检测系统框架按照开闭的设计原则,以主控与组件分离作为架构风格进行设计。这样便使框架在不同的网络应用环境中,基于框架使用者对应用组件的各种实现使框架具有良好的兼容性和灵活性。另外,为了保持计算机安全状态检测系统框架数据的可读性以及可迁移性,采用了XML格式的文件作为框架进行数据存取的媒介。最后,对实现的框架进行功能测试和压力测试,并在企业的网络安全产品中进行了成功应用。测试和应用实践的结果表明,计算机安全状态检测系统框架能有效提高计算机安全状态检测系统的开发效率以及对于应用环境的兼容性,并具有良好的性能。

  【Abstract】 In the situation that security issues are getting more serious and the types of computer security threats tend to be more complex, a single specific field of information security products can no longer provide effective and comprehensive protection for computers and networks. Currently available computer security integrated control systems, which are based on Trusted Network Connect Architecture, have been capable of integrating various security products. However, most of these systems lack the flexibility of configuring the system and the specifically defined rule engine workflow model, thus creates a limitation to the new computer threats analysis, extensibility and compatibility of other security products. Therefore, the creation of a configurable rule-based framework for computer inspection system is necessary.In this situation, this paper proposes to solve these problems with the framework of computer security status inspection system based on finite state automaton. The work flow of computer security status inspection is configurable according to requirements. The framework is able to assess the security status of the computer system and perform network quarantine. All these features make the inspection system compatible to network environment properly with its flexibility.First, we analyzed the computer system risks and classify them, refined the risk catalog into a subset that can be handled by the framework, which is the initial input of design. We also initially defined the features of the framework, which are the start point of analysis and design.Then, we performed the requirements analysis using use case technique. The realization of use cases was modeled through class diagrams and sequence diagrams, and operations of classes were defined precisely based on the finite state automaton. Comparing to the normal method, the use case modeling combined with the finite state automaton based description has better consistency and unambiguity.After that, we designed the framework from multi-dimensional views, including hierarchical view, static logical view, dynamic logical view, process view, and deployment view. During the design phase for the framework, it was taken into account that the framework will be used in different network environments. Therefore, the framework of computer security status inspection system is designed with Open-Close principle by applying the separation of core and component style. The framework could work well in different network environments with good compatibility and flexibility based on the user realization of application components. In addition, in order to ensure the readability of data and the convenience of migration, the XML format file was chosen for the framework data storage.Finally, the function test and the stress test were performed on the framework. We have applied the framework in a real product. It showed that the framework can improve the compatibility of the inspection system, and enhance the efficiency of the inspection system development. It also proved that the framework is capable to meet common organizational needs.

  【关键词】 计算机安全; 网络控制; 框架; 灵活性; 兼容性;

  【Key words】 computer security; network control; framework; flexibility; compatibility;

转贴于中国论文库 http://www.lwkoo.com

    相关阅读

    推荐论文

    热门

    最新

    推荐