NETWORK VULNERABILITY DIAGNOSING SYSTEM AND METHOD THEREFOR

摘要

PURPOSE: A network vulnerability diagnosing system and a method therefor are provided to establish a preceding and succeeding relation of an attack by selecting a next attack based on a state change in a network and diagnose vulnerability of a network by attacking and testing a model of an evaluation-subject network model. CONSTITUTION: A host characteristics unit(10) expresses characteristics of a host model. A protocol buffer(20) receives an attack packet, stores it for a predetermined time and outputs it to express a buffer resource of the host model. A CV(Compound Vulnerability) list unit(30) expresses CV of the host model. An AV(Atomic Vulnerability) unit(40) includes the CVs to express AVs of the host model. A Vulnerability DB(DataBase)(50) stores the CV and the AV of the host model. An interference engine(60) controls analyzing and diagnosing on the vulnerability of the host model. An evaluation method unit(70) determines whether the AV of the AV list unit(40) has been misused by the attack packet and transfers a result value to the CV list unit(30). A security manager interface unit(80) reports a vulnerability diagnosis result of the host model to a manager.