Researches And Designs Of Means Of Carrying Out Service Security Detection As A Service Geared To The Needs Of Converged Networks

Triple-play refers to the physical interconnection and the interpenetration at service level of telecommunications networks, the internet, and cable TV networks through technical modifications, which is manifested in their technical homogeneity and their common ability of providing the users with multi-media communication services such as vocal, digital and visual ones. In the present, triple-play does not refer to the physical integration but the integration of the three nets at a service level. Through establishing a cooperative service platform and a unitary service interface and platform for service management, the telecommunication operator, the cable TV operator and the third party SP, CP can provide the users with service in a unitary way.With the triple-play in process, the users in the future can get all sorts of service through choosing a certain way of being connected to the internet, which, though benefitting the users considerably, is not without serious problems. Traditional telecommunication networks and cable TV networks are both relatively closed systems, which make it costly to attack them by taking advantage of the security vulnerability for the hackers. Nevertheless, the network converged with the internet will be an open one, thus the virus, attack and vulnerability in the internet will emerge in the converged networks. If the security detection of the converged networks service can be provided as a service, the service suppliers can alter their detection service according to their own service, carry out the security detection regularly, and then upgrade their security assurance measures according to the result of the detection.By this means of providing service, the service suppliers can get professional detection with less difficulty and then enhance the security of their services. On this account, researches on how to carry out the security detection as a service geared to the needs of converged networks is of vital importance.This thesis will first expand on the research background, drawing an outline of technologies such as the background of the triple-play, service-oriented architecture, software as a service and cloud computing. It moves on to analyze the basic frame of the converged networks service and the categorization of bugs, introducing the concept of and ways of detections of every sort of security vulnerability, based on which to propose a means of defining the service security matrix. Finally, a specific introduction of the prototype system of security detection as a service and the design of critical modules will be given.