文献类型：会议论文

英文题名：NASL Based Vulnerability Detector Design and Implementation for Remote Computerhttp://link.springer.com/content/pdf/10.1007%2F978-3-642-28658-2_38.pdf

作者：Xu, Feng[1];Jin, Xiaoting[2]

第一作者：Xu, Feng

通讯作者：Xu, F[1]

机构：[1]Zhongyuan Univ Technol, Sch Comp Sci, Zhengzhou 450007, Peoples R China;[2]Henan Univ Econ & Law, Coll Public Adm, Zhengzhou 450002, Peoples R China

第一机构：Zhongyuan Univ Technol, Sch Comp Sci, Zhengzhou 450007, Peoples R China

通讯机构：[1]corresponding author), Zhongyuan Univ Technol, Sch Comp Sci, Zhengzhou 450007, Peoples R China.

会议论文集：Conference on Electronic Commerce, Web Application and Communication

会议日期：MAR 17-18, 2012

会议地点：Wuhan, PEOPLES R CHINA

语种：英文

外文关键词：vulnerability detector; remote computer; NASL

摘要：This paper proposed a vulnerability detector design and implementation method, referred to as NRCVD, for probing given security holes of remote computers. After expounding the detector design idea, the work flow, plug-in definition and design method, we illustrated the detector architecture. All plug-ins for vulnerability detection within NRCVD are implemented by the scripting language of NASL. Experiment results and comparisons show that NRCVD is feasible, and it has the features of high security, fast-speed, and low resource-occupying ratio. Thus, it provides a good solution to cyber security testing and assessment.