A Novel Active Vulnerability Detection And Network Security Analysis System

With rapid development of network technology, network security detection and analysis technology has become a key point in network security research. Detecting network vulnerabilities in advantage, evaluating the security risk, finding the key factors that affect the network security, and providing efficient methods for reparation, will build the network security detection and analysis system. This system can do active defense against attacks, so it is attracting much attention from the network security research field.In this paper, much research on network security detection and analysis technology is done. A novel active vulnerability detection system based on OVAL is presented and realized. Then Ant Colony Optimization algorithm is used to find the minimum critical attack set of the network attack graph in order to assure network security. The main work includes:(1) We summarize the urgent demanding of vulnerability detection and the actual research situation. Then we propose and realize a novel active vulnerability detection system. It is based on Open Vulnerability Assessment Language with C/S mode. The console can send detecting request to several agents which are in connection with the console. This can realize remote and large-range vulnerability scan, and get result report of the whole network. In this detection system, it detects the presence of software vulnerabilities in terms of system characteristics and configuration information, without requiring software exploit code. Agents can run on multiple operating system and we can easily update the system by downloading new vulnerability definition files. Compared with other existing vulnerability assessment systems, it is high accuracy, little negative impact on performance of the evaluated systems, short running periods, and easily updating.(2) With the attack graph built with vulnerabilities, computer linking information and system configuration information, we solve the minimum critical attack set problem using Ant Colony Optimization algorithm. This algorithm is a newly developed technology and used to find the optimum solution step by step by simulating natural ecological mechanism. So it is available for the minimum critical attack set problem. We program to realize it and get good result in the test. This proves the accuracy and efficiency of Ant Colony Optimization algorithm in solving this problem.