| The purpose for realizing this system, the first, is to learn the standard of CVE(Common Vulnerabilities&Exposures), and to look up the final code performance through the relevant field description of CVE. After doing this, we can research the specific code that leads to that CVE. Then, study the basic design principles of database, so as to design the relational database system that meets the business needs and consolidate the knowledge about database further. By hands-on implementation of database system, put knowledge that learned from the book into practical application development. Finally, after the development of scanning tool, we will make design and plan for the security scanning platform used within Intel.The system is developed in the Linux platform by using Perl, Shell, C and web development language. Perl language is used to complete the logic functions of the main system. Shell is used to finish the related system commands. Web language, using php+javascript+html, is used to give the system a front website. C language is used in jira_tool, which is a tool for submitting bug information to relevant website, JIRA. The system controls the entrance by using config file, controls the version by using git and controls the Bug by using JIRA, in the process of development. The database is PostgreSQL, which is an open source database.The system has been basically completed, and has been applied in some departments of Intel now. The system supports the related bug repair work for Tizen mobile phone operating system in the development process very well. Being compared to other scanning systems, this system is adapt to the project’s specific development needs, because we change the scanning object from the system level to the source package level, having a better grasp of the details in the development. |
PDF Full Text Request