CN103368779A - Method for inspecting network attribute collection - Google Patents
Method for inspecting network attribute collection Download PDFInfo
- Publication number
- CN103368779A CN103368779A CN2013103031990A CN201310303199A CN103368779A CN 103368779 A CN103368779 A CN 103368779A CN 2013103031990 A CN2013103031990 A CN 2013103031990A CN 201310303199 A CN201310303199 A CN 201310303199A CN 103368779 A CN103368779 A CN 103368779A
- Authority
- CN
- China
- Prior art keywords
- network
- attribute
- whole
- data form
- attributes
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The invention relates to a method for inspecting network attribute collection. The method includes the following steps that (1), aiming at given network device information, a data form besides network devices and related facilities is built, and in addition a related attribute data form of a whole network is created; (2), according to the network device information, all kinds of attributes and states of the devices are filled, and meanwhile overall attributes and overall states of the whole network are filled; (3), according to an inspection rule, whether related attributes of the network devices meet the rule or not is inspected, and meanwhile whether related attributes and related states of the whole network meet a norm or not is inspected; (4) a related inspection result report is generated. The method for inspecting the network attribute collection has the advantages of being high in operability and capable of being performed automatically, through the analysis of the network device information, a network overall attribute data set is built and identified and then undergoes compliance inspection, complete inspection carried out on the overall states, the overall attributes and matching of the network are achieved from the macroscopic perspective, and the difficult problems in the automatic inspection industry are solved.
Description
Technical field
The present invention relates to the network security technology field, relate in particular to the method that realizes Network Check by the marked network integrity attribute.
Background technology
Existing network is checked or the process of upgrading existing network or test New Deal project in, all need reliability and the validity of network are assessed objectively, to reduce the investment risk of networking, make planned network that very high performance be arranged, perhaps make test result can truly reflect the performance of New Deal, legacy network design and planing method are mainly by experience, catenet to complexity, the incessantly main points of network design are grabbed owing to predicting in a lot of places, so industry more and more needs a kind of new Network Check and audit means.
Under present existing trend, research automated network inspection method will be liberated the network security industry for people's dependence, make the inspection behavior reliable, rigorous, and can quantize to pay with batch.The Network Check knowledge of moulding can be better solidified in the standardization of Network Check, automation, standardization, intellectuality, will be in a large number can standardized deterministic process consigns to network and automatically finishes.In the checking process of automation, can remove hand labor from simultaneously, reduce cost, also avoid other people to contact critical data, and then improved the confidentiality of whole audit process, automation tools replaces manual work to become the trend of industry development.
In the process of Network Check automation, the automatic inspection of network equipments configuration is faced with again a large amount of technical barriers, automatic generation report from automatic decision, inspection and the later stage of the configuration of the equipment that automatically recognizes of equipment, all there are more technological difficulties, especially whether automatically from the facility information of magnanimity, differentiating safety, whether close rule, whether meet particularly difficulty of the aspect such as technical need aspect, the product or the method that also do not have at present to address these problems occur.
The present networks inspection method has created and has a kind ofly identified by the attribute of phase-split network facility information to the network equipment, and then carries out the method that compliance checks, solves the industry difficult problem that automation checks.
Summary of the invention
The purpose of this invention is to provide a kind of network attribute and collect inspection technique, adopt brand-new network integrity attribute concept, by the information of the confusing network equipment of magnanimity, by neat, unified be designated measurable, can compare, can judge, discernible normalized network integrity attribute information, be applicable to inspection and the misarrangement of big-and-middle-sized network, to overcome present prior art above shortcomings.
The objective of the invention is to be achieved through the following technical solutions:
A kind of network attribute collects inspection technique, may further comprise the steps:
1) creates a Network Check project, and read the network equipment information that gives, create corresponding data form 1 according to reading the implementor name that filters out in the process, this data form 1 is used for filling the various attributes of corresponding equipment, simultaneously, create an independent data form 2 that is used for the whole association attributes of marked network;
2) again scan the network equipment information that gives, find that the whole association attributes of network of sign is then made mark in the database of correspondence, will be filled in the data form 2 with network whole relevant attribute and state simultaneously; The been scanned then data form 2 of the corresponding attribute of whole network is set up completely, then begins the dissecting needle information relevant to whole network, and these information is converted into accordingly a certain or multiple attribute/state of this network integral body;
3) according to set inspection rule, the association attributes of whole network is checked; The various attributes of every equipment be filled to data form 1 complete after, then can verify attribute and the state of whole network, and then attribute and the state of whole network are examined one by one;
4) generate report: can not arrange out one by one meeting the set clauses and subclauses of rule that check in the checking process, and generate the coherence check report the test.
Beneficial effect of the present invention is: provide network attribute a kind of strong operability, that can automation implement to collect inspection technique, set up network integrity attribute data set by the phase-split network facility information, and it is identified, and then carry out the compliance inspection, realized comprehensively checking from state, attribute and the matching of macroscopic perspective to network integral body, solved the industry difficult problem that automation checks.
Description of drawings
The below is described in further detail the present invention with reference to the accompanying drawings.
Fig. 1 is that the attribute that the described network attribute of the embodiment of the invention collects inspection technique collects and the check process schematic diagram.
Embodiment
As shown in Figure 1, the described a kind of network attribute of the embodiment of the invention collects inspection technique, may further comprise the steps particularly:
1) creates a Network Check project, and read the network equipment information that gives, create corresponding data form 1 according to reading the implementor name that filters out in the process, it is an equipment that the implementor name that occurs is all regarded as, this data form 1 is used for filling the various attributes of corresponding equipment, and the corresponding data list 1 of each equipment or implementor name then has a plurality of data forms 1, simultaneously, create an independent data form 2 that is used for the whole association attributes of marked network;
For example: comprise 8 equipment (each own different device name) in the network equipment information that gives, except 8 equipment for this reason create 8 corresponding data lists 1, create simultaneously a data list 2, the attribute and the state that are used for the integral body of the network that sign is comprised of these 8 network equipments, and one of these 8 equipment attribute that also to be this network integral body in fact have (this network comprises the number of devices attribute: 8).
2) again scan the network equipment information that gives, find that the whole association attributes of network of sign is then made mark in the database of correspondence, will be filled in the data form 2 with network whole relevant attribute and state simultaneously; The been scanned then data form 2 of the corresponding attribute of whole network is set up completely, then begins the dissecting needle information relevant to whole network, and these information is converted into accordingly a certain or multiple attribute/state of this network integral body;
For example: this network integral body has been used the OSPF Routing Protocol, and comprise 3 ospf areas, do not use the MD5 effect between the ospf router, these information that are decomposed out then, all be can be regarded as a certain or multiple attribute/state of this whole network, and be identified at respectively in the network integrity attribute; According to the network equipment information that provides, various attributes and the state of the network integral body that comprises in this network equipment information are inserted list 2.
3) according to set inspection rule, the association attributes of whole network is checked; The various attributes of every equipment be filled to data form 1 complete after, then can verify attribute and the state of whole network, and then attribute and the state of whole network are examined one by one; The inspection to attribute and the state of overall network is crossed in the service regeulations storehouse, draws check result.
For example: the zone of the OSPF of Cisco should be continuous, and All Ranges all links to each other with area0.As individual areas occurs and do not link area0, then the OSPF Routing Area setting of this network has comprised at least one mistake.
4) generate report: can not arrange out one by one meeting the set clauses and subclauses of rule that check in the checking process, and generate the coherence check report the test.
In this patent, the network equipment refers in particular to all hardware units that consist of network principal and be used for network connection, and the non-material object of guarantee network-in-dialing, the object that exists in logic comprises as follows:
1, the various terminal equipments such as PC terminal, private server, printer, portable terminal;
2, router, switch, fire compartment wall, the independent networking isolated plants such as physical function module of pegging graft;
3, the physical circuit that needs in the networking or logic connect, such as network cable, wireless connections;
4, in logic non-entity target, as " local area network (LAN) " this pseudo-entity itself of being formed by each network connection device or " cloud " (pseudo-entity " cloud " is suitable for various application occasions, as: backbone network that is provided by operator etc.).
The present invention adopts brand-new network integrity attribute concept, so that the information of the mixed and disorderly unordered network equipment of the magnanimity of extracting, by neat, be designated uniformly measurable, can compare, can judge, discernible normalization network integrity attribute information, the Network Check means that can only simply check the network unit have been surmounted in the conventional method, realization is from macroscopic perspective, state to network integral body, attribute, matching has had the comprehensive method of inspection, simultaneously this method is specially adapted to the inspection of big-and-middle-sized network and misarrangement a kind of strong operability is provided, the network attribute of can automation implementing collects inspection technique, has solved the industry difficult problem that automation checks.
Above-described embodiment only is for the invention example clearly is described, and is not the restriction to the invention embodiment.For those of ordinary skill in the field, can also make other changes in different forms on the basis of the above description.Here need not also can't give all execution modes exhaustive.All any apparent variations of being extended out within the spirit and principles in the present invention or change still are among the protection range of the invention claim.
Claims (3)
1. a network attribute collects inspection technique, it is characterized in that: may further comprise the steps:
1) creates a Network Check project, and read the network equipment information that gives, create corresponding data form 1 according to reading the implementor name that filters out in the process, this data form 1 is used for filling the various attributes of corresponding equipment, simultaneously, create an independent data form 2 that is used for the whole association attributes of marked network;
2) again scan the network equipment information that gives, find that the whole association attributes of network of sign is then made mark in the database of correspondence, will be filled in the data form 2 with network whole relevant attribute and state simultaneously; The been scanned then data form 2 of the corresponding attribute of whole network is set up completely, then begins the dissecting needle information relevant to whole network, and these information is converted into accordingly a certain or multiple attribute/state of this network integral body;
3) according to set inspection rule, the association attributes of whole network is checked; The various attributes of every equipment be filled to data form 1 complete after, then can verify attribute and the state of whole network, and then attribute and the state of whole network are examined one by one; And
4) generate report: can not arrange out one by one meeting the set clauses and subclauses of rule that check in the checking process, and generate the coherence check report the test.
2. network attribute according to claim 1 collects inspection technique, it is characterized in that: in described step 2) in, according to the network equipment information that provides, various attributes and the state of the network integral body that comprises in this network equipment information are inserted list 2.
3. network attribute according to claim 1 collects inspection technique, it is characterized in that: in step 3), the inspection to attribute and the state of overall network is crossed in the service regeulations storehouse, draws check result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310303199.0A CN103368779B (en) | 2013-07-18 | 2013-07-18 | Method for inspecting network attribute collection |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310303199.0A CN103368779B (en) | 2013-07-18 | 2013-07-18 | Method for inspecting network attribute collection |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103368779A true CN103368779A (en) | 2013-10-23 |
| CN103368779B CN103368779B (en) | 2017-04-19 |
Family
ID=49369368
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310303199.0A Expired - Fee Related CN103368779B (en) | 2013-07-18 | 2013-07-18 | Method for inspecting network attribute collection |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103368779B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105024867A (en) * | 2014-04-15 | 2015-11-04 | 吴峥 | Network equipment state detection method and apparatus |
| CN113626860A (en) * | 2021-07-29 | 2021-11-09 | 上海和数软件有限公司 | Electric power data privacy protection method based on block chain |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2200249A1 (en) * | 2008-12-17 | 2010-06-23 | Abb Research Ltd. | Network analysis |
| CN102354310A (en) * | 2011-07-12 | 2012-02-15 | 广东电网公司信息中心 | Method and system for automated information security evaluation |
| CN102427445A (en) * | 2011-08-29 | 2012-04-25 | 吴伟湘 | Safe auditing method of IT simulation infrastructure offline compliance |
-
2013
- 2013-07-18 CN CN201310303199.0A patent/CN103368779B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2200249A1 (en) * | 2008-12-17 | 2010-06-23 | Abb Research Ltd. | Network analysis |
| CN102354310A (en) * | 2011-07-12 | 2012-02-15 | 广东电网公司信息中心 | Method and system for automated information security evaluation |
| CN102427445A (en) * | 2011-08-29 | 2012-04-25 | 吴伟湘 | Safe auditing method of IT simulation infrastructure offline compliance |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105024867A (en) * | 2014-04-15 | 2015-11-04 | 吴峥 | Network equipment state detection method and apparatus |
| CN113626860A (en) * | 2021-07-29 | 2021-11-09 | 上海和数软件有限公司 | Electric power data privacy protection method based on block chain |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103368779B (en) | 2017-04-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107332347B (en) | Intelligent substation secondary intelligence Computer Aided Design platform | |
| CN104391244B (en) | The relay protection device closed loop method of inspection and system | |
| CN106230780B (en) | A kind of intelligent transformer substation information and control system safety analysis Evaluation Platform | |
| CN107231267B (en) | Communication network inspection method and device and inspection client | |
| CN104483842A (en) | Regulation and control integrated automatic master station comparison method | |
| CN105956987A (en) | Road traffic engineering test detection data acquisition and evaluation system | |
| CN104270389A (en) | Method and system for automatically restoring security configuration vulnerability of router/ interchanger | |
| WO2015149596A1 (en) | Iec61850-based communication simulation method for leakage current on-line monitoring device | |
| CN102830694A (en) | Automatic fault inspection system and client monitoring terminal | |
| CN104166890A (en) | Method for monitoring a process and/or production plant | |
| CN110188888A (en) | Power equipments defect management method, system and terminal based on AHP and remote support | |
| CN103913728B (en) | A kind of method of testing based on portable radar comprehensive tester | |
| CN105738736A (en) | Intelligent transformer substation secondary equipment panorama test system and construction and test method thereof | |
| CN110532314A (en) | The method and terminal device of High-Voltage Electrical Appliances quality testing | |
| CN103368779A (en) | Method for inspecting network attribute collection | |
| CN108072858A (en) | Electric energy meter method for quality control, system and terminal device | |
| CN105099816B (en) | A kind of aviation mission electronic system general comprehensive detection device and detection method | |
| CN103475531A (en) | Abnormity processing method, automatic inspection console and knowledge base system | |
| CN103368793A (en) | Method for achieving network inspection by identifying network overall attribute | |
| CN106919748B (en) | Device and method for improving FPGA prototype verification efficiency | |
| CN114244427B (en) | Method and device for checking optical fiber network port resource and computer readable medium | |
| CN113095059B (en) | Method, device, equipment and storage medium for verifying substation configuration description file | |
| CN103904777B (en) | A kind of method that effectiveness of information is sent in automatic identification electric grid secondary equipment | |
| CN113347060B (en) | Method, device and system for detecting power network fault based on process automation | |
| CN113887754A (en) | Construction method and system of power distribution terminal unified operation and maintenance platform and constructed platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: ZHAN WEI Effective date: 20140423 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20140423 Address after: 100086, 44 floor, Zhongguancun Aviation Science Park, No. 43 West Third Ring Road, Beijing, Haidian District Applicant after: Beijing Suifang Information Technology Co., Ltd. Applicant after: Zhan Wei Address before: 100086, 44 floor, Zhongguancun Aviation Science Park, No. 43 West Third Ring Road, Beijing, Haidian District Applicant before: Beijing Suifang Information Technology Co., Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20170419 Termination date: 20210718 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |