| With the scrambling for the superiority of internet, the problem of Computer Network Operation(CNO) and Computer Network Security already becomes a world-wide research hotspot. The research about Computer Network Attack(CNA),Computer Network Defense(CND),Computer Network Exploit(CNE) has a great deal important theoretic meaning and value to computer network and information security,information operation. Information collecting is an important part of the CNE, and has a great deal important supporting value to CNA and CND.In this paper, the point we researching is probing computer network vulnerability information in a long distance, which is a main means of information collecting. To meet the need of project, providing probing support to CNA and CND, and relying on high-level commanding language to describe network service vulnerability probe, network service vulnerability probe description language ,and provides formalization prove and analysis of this language. Through formalization prove and analysis, we can see the logic of the language is right or not. Based on this, design and implement this probing system on MS Windows platform, to prove that the language is effective.In the dissertation the main work of this paper can be generalized as follow:1,Introduce the background and value of this paper, analyze the research home and abroad about vulnerability probe, Point out the disadvantage of present network service vulnerability description language: on one side, the main current vulnerability probe research focusing on programing independent program to probe and affirm vulnerability, the results of probe can not used for other parts, and can not share results with other parts, such as providing to CND. On the other hand, some description language focusing on descripting material and low-grade probe act or process, so they are not universal and did not give the ability of description of CNA and CND's need.2,As for the problems mentioned before, analyze the present technique of network vulnerability probe ,research the key technology involved. After giving out the theories and technology applied in it, anaylze involved concept,function and relation between them, and give function model.3,Based on the function model, design network service vulnerability language, NSVPL, give the grammar and semantics rules, and last provide formalization prove and analysis of this language.4,According to the designed grammar and semantics rules, Use software engineering idea, design and give system data flow,model and program flow. Using tools like VC++6.0,Lex and Yacc to realize the network service vulnerability probe system.5,Providing certification objectives, the testing of the environment,testing steps and analyze the results. From the theory proved and testing results point of view, the concerns in research papers to be right, the design is feasible, the achievement of the system is correct。Finally, the paper gives the summary of this research, and points out which research work is next step to carry out. |
PDF Full Text Request