Design And Development For The Performance Testing Of The Security Policy Management System

The security policy management is a set of innovative network protection system. It ensures that every endpoint of the network is compliant with corporate security policy before network access is granted. The security management server, which is the centralized point of the control over all Security Agents and Enforcers where network administrators can define and distribute security and enforcement policies, collect logs and maintain the integrity of the corporate network. It can not only support the traditional host-based firewall functionality (Port scan detect and block, Trojan protection, host-based IDS, Denial of service intrusion detection and prevention, etc.), but also lock the legal applications, verify the dynamic link lib called by the applications and analyze the incoming and outgoing communications for the malicious behavior. For the complicated communicating environment and the need of the security protection, it is necessary to propose a reasonable performance testing schema to evaluate the security policy management to make sure the balance between the security and the performance of the system. This paper mainly focuses on the probing on the methodology of the performance testing in the security policy management system. It has taken deep analysis and research on the theory of the software testing and the network performance testing, especially in the field of the black box testing and the performance testing based on the server side. This paper not only does research for the network organization and the working principles associated with the distributed firewall techniques, but also analyzes the potential performance neck-bottles so as to put forward an integrated resolving schema via black-box testing and the network performance testing and design testing criteria for each step. At last it proposes a detailed testing schedule according to the total designed testing cases in order to evaluate the capability of the system, identify the system limitation, optimize the tested system and improve the efficiency in software developing phase. This paper proposed a set of scientific, reasonable and systematic software performance testing schema on the basis of security policy management system framework. It is especially suitable for the performance testing on the complicated software product and the B/S network structure. It integrates the theory for the IP network performance testing (That is to evaluate the performance of the testing environment according to the behaviors of the package transmission in the bottom layer) into the software performance testing. We have put this method into the practical testing cases and verified its validity.