| 摘要 |
A system and a method for integrally analyzing network vulnerability by using multiple heterogeneous scanners are provided to make complementary vulnerability check possible by utilizing the multiple heterogeneous scanners, improve accuracy and comprehension of the vulnerability check result, and analyze the network vulnerability totally. A system for integrally analyzing network vulnerability by using multiple heterogeneous scanners comprises the multiple heterogeneous scanners(100_1~100_5), plural agents(200_1~200_5), a vulnerability managing and integrating module(300), and a vulnerability check control and analysis center(400). The vulnerability managing and integrating module collects check results of respective multiple heterogeneous scanners as communicating with each agent, performs correlation analysis of the plural check results collected from each heterogeneous scanner, and stores the analysis result in a vulnerability database(308). The vulnerability check control and analysis center controls and executes the multiple heterogeneous scanners, performs integrated analysis based on the check results of the multiple heterogeneous scanners and the correlation analysis result, and shows the integrated analysis result to an administrator through a GUI(Graphical User Interface). The vulnerability check control and analysis center provides a query and feedback function for the integrated analysis result to the administrator, and manages a check policy history to maintain consistency of a vulnerability check policy.
|
