CN114328196A - Method, device and equipment for testing data leakage prevention system and storage medium - Google Patents
Method, device and equipment for testing data leakage prevention system and storage medium Download PDFInfo
- Publication number
- CN114328196A CN114328196A CN202111547754.5A CN202111547754A CN114328196A CN 114328196 A CN114328196 A CN 114328196A CN 202111547754 A CN202111547754 A CN 202111547754A CN 114328196 A CN114328196 A CN 114328196A
- Authority
- CN
- China
- Prior art keywords
- test
- leakage prevention
- data leakage
- testing
- prevention system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000012360 testing method Methods 0.000 title claims abstract description 394
- 230000002265 prevention Effects 0.000 title claims abstract description 98
- 238000000034 method Methods 0.000 title claims abstract description 38
- 230000006399 behavior Effects 0.000 claims abstract description 61
- 238000004088 simulation Methods 0.000 claims description 22
- 238000010998 test method Methods 0.000 claims description 12
- 238000004590 computer program Methods 0.000 claims description 8
- 230000000694 effects Effects 0.000 abstract description 10
- 230000006870 function Effects 0.000 description 9
- 238000010586 diagram Methods 0.000 description 5
- 230000008569 process Effects 0.000 description 4
- 238000012545 processing Methods 0.000 description 4
- 230000002457 bidirectional effect Effects 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000005034 decoration Methods 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000011056 performance test Methods 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 230000002776 aggregation Effects 0.000 description 1
- 238000004220 aggregation Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000004886 process control Methods 0.000 description 1
- 238000013112 stability test Methods 0.000 description 1
- 230000007474 system interaction Effects 0.000 description 1
Images
Landscapes
- Debugging And Monitoring (AREA)
Abstract
The invention discloses a method, a device, equipment and a storage medium for testing a data leakage prevention system. Wherein, the method comprises the following steps: responding to a received test instruction, and acquiring test control parameters to be used in the automatic test system, wherein the test control parameters are pre-configured by the system or input by a target object in real time; controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; and automatically testing the data leakage prevention system under the test environment to obtain a test result. The invention solves the technical problems of low testing efficiency and poor testing effect caused by the fact that a traditional open source testing framework can not realize automatic testing of a data leakage-proof system under the condition that a plurality of terminal devices are running simultaneously.
Description
Technical Field
The invention relates to the technical field of system testing, in particular to a testing method, a testing device, testing equipment and a storage medium of a data leakage prevention system.
Background
With the increasing emphasis of various industries on data, the security problem of data has also gained wide attention of data users. Data leakage prevention system, as a more mature data safety protection means, its security test also more and more receives attention.
At present, an open-source test framework of a data leakage prevention system, for example, a distributed test system is built by using an open-source test tool Jmeter, as shown in fig. 1, a main control dispatcher and a plurality of executors are deployed to generate sufficient pressure on a system to be tested, meanwhile, a tester tests the system to be tested by compiling a test plan, setting test parameters such as request initiation quantity and the like, and finally, a test result report is generated. However, when the test system is used for pressure test, under the condition that a large number (for example, ten thousand) of simulation terminal threads are executed, the context switching of a Central Processing Unit (CPU) is too frequent, and the conditions of machine restart caused by memory overflow, excessive resource consumption and the like exist in a large concurrent scene. The deployment of the test system depends on java environment, JDK and Jmeter versions need to be unified, the process is complex, the data can not be used after opening the box, the test cases can not be well matched with the data leakage-proof system, the writing process is complex, and the learning cost is high.
In view of the above problems, no effective solution has been proposed.
Disclosure of Invention
The embodiment of the invention provides a test method, a test device, test equipment and a storage medium of a data leakage prevention system, which at least solve the technical problems of low test efficiency and poor test effect caused by the fact that a traditional open source test framework can not realize the automatic test of the data leakage prevention system under the condition that a plurality of terminal devices run simultaneously.
According to an aspect of an embodiment of the present invention, there is provided a method for testing a data leakage prevention system, the method including: responding to a received test instruction, and acquiring test control parameters to be used in the automatic test system, wherein the test control parameters are pre-configured by the system or input by a target object in real time; controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; and automatically testing the data leakage prevention system under the test environment to obtain a test result.
Optionally, obtaining test control parameters to be used in the automated test system includes: acquiring a test configuration file and a terminal behavior rule file, wherein the test configuration file comprises: terminal description information, authentication certificate information, and user information; obtaining a target configuration file associated with the data leakage prevention system from the test configuration file, and obtaining a target rule file associated with the data leakage prevention system from the simulation terminal behavior rule file; and generating the test control parameters based on the target configuration file and the target rule file.
Optionally, the method further includes: predefining terminal behaviors to be tested of a plurality of terminals to be tested, wherein the terminal behaviors to be tested comprise at least one of the following behaviors: selecting a plurality of target terminals from a plurality of terminals to be tested, wherein the target terminals are selected as the terminals participating in the test; and determining the registration behavior, the login behavior, the logout behavior and the starting time interval of a plurality of terminals to be tested.
Optionally, the method further includes: responding to the received test instruction, and acquiring a test type and a server address of a test server when starting a test, wherein the test type comprises: one-way authentication testing and two-way authentication testing.
Optionally, the method further includes: acquiring test load data of the automatic test system; and determining whether to add a new test node into the automatic test system according to the test load data so as to improve the load capacity of the automatic test system.
Optionally, after performing an automated test on the data leakage prevention system in the test environment to obtain a test result, the method further includes: and responding to the received test result display instruction, and displaying the test result, wherein the test result is used as a basis for determining whether to increase the test pressure by the test object, and the test result comprises the time consumption of each test logic in the current rule file and the time consumption of the relevant API.
Optionally, after performing an automated test on the data leakage prevention system in the test environment to obtain a test result, the method further includes: counting all the test results associated with the data leakage prevention system, wherein the test results generated by all the test nodes in the automatic test system are periodically summarized to a main control node in the automatic test system; generating a test report based on all the test results; and displaying the test report.
According to another aspect of the embodiments of the present invention, there is also provided a testing apparatus for a data leakage prevention system, the apparatus including: the system comprises an acquisition module, a storage module and a control module, wherein the acquisition module is used for responding to a received test instruction and acquiring test control parameters to be used in the automatic test system, and the test control parameters are pre-configured by the system or input by a target object in real time; the control module is used for controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; and the test module is used for automatically testing the data leakage prevention system under the test environment to obtain a test result.
According to another aspect of embodiments of the present invention, there is also provided a computer-readable storage medium having stored thereon a plurality of instructions adapted to be loaded by a processor and to perform a method of testing any of the above-described data leakage prevention systems.
According to another aspect of the embodiments of the present invention, there is also provided an electronic device, including a memory and a processor, the memory having a computer program stored therein, the processor being configured to execute the computer program to perform any one of the above-mentioned methods for testing a data leakage prevention system.
In the embodiment of the invention, a data leakage prevention system test mode is adopted, and test control parameters to be used in an automatic test system are obtained by responding to a received test instruction, wherein the test control parameters are pre-configured by the system or input by a target object in real time; controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; the data leakage prevention system is automatically tested under the test environment to obtain a test result, the aim of automatically testing the data leakage prevention system under the condition that a plurality of terminal devices operate concurrently is fulfilled, the technical effects of improving the automatic test efficiency and the test effect of the data leakage prevention system are achieved, and the technical problems that the test efficiency is low and the test effect is poor due to the fact that a traditional open source test frame cannot achieve the automatic test on the data leakage prevention system under the condition that the plurality of terminal devices operate concurrently are solved.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
fig. 1 is a schematic diagram of a test framework of a data leakage prevention system according to the prior art;
fig. 2 is a flow chart of a method of testing a data leakage prevention system according to an embodiment of the present invention;
FIG. 3 is a block diagram illustrating an alternative automated test system and data containment system interaction in accordance with an embodiment of the present invention;
fig. 4 is a flow chart of an alternative method of testing a data containment system in accordance with an embodiment of the present invention;
fig. 5 is a flow chart of an alternative method of testing a data containment system in accordance with an embodiment of the present invention;
fig. 6 is a flow chart of an alternative method of testing a data leakage prevention system in accordance with an embodiment of the present invention;
fig. 7 is a schematic structural diagram of a testing apparatus of a data leakage prevention system according to an embodiment of the present invention.
Detailed Description
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used is interchangeable under appropriate circumstances such that the embodiments of the invention described herein are capable of operation in sequences other than those illustrated or described herein. Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed, but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
First, in order to facilitate understanding of the embodiments of the present invention, some terms or nouns referred to in the present invention will be explained as follows:
data Leakage Prevention (DLP): the method is a strategy for preventing specified data or information assets of an enterprise from flowing out of the enterprise in a form of violating safety strategy regulations through certain technical means.
Example 1
With the increasing emphasis of various industries on data, the security problem of data has also received great attention from data users. Data security, as an important branch of information security, is also rapidly developed and evolved to meet application requirements of different industries. Wherein, data prevent leaking the system, as a comparatively ripe data safety protection means, also develop to intelligent direction gradually, more and more laminate user's use habit, but along with the increase of data prevent leaking system terminal and function, put forward higher requirement to the stability of data prevent leaking the system server.
The traditional open source test framework occupies a lot of resources, does not support large concurrent test of terminals, or is complicated in test case compiling and limited in distributed support. Meanwhile, protocol adaptation has a large workload, and different analog terminal process control needs to be adjusted differently. Based on this, the existing data leakage prevention system urgently needs a test system which supports large concurrent terminal simulation, test flow arrangement and distributed load. To meet the requirements of system stability and performance tests.
In view of the foregoing, it should be noted that the steps illustrated in the flowchart of the accompanying figures may be performed in a computer system such as a set of computer-executable instructions and that, although a logical order is illustrated in the flowchart, in some cases the steps illustrated or described may be performed in an order different than that illustrated or described herein.
Fig. 2 is a flow chart of a method of testing a data leakage prevention system according to an embodiment of the present invention, as shown in fig. 2, the method including the steps of:
step S102, responding to a received test instruction, and acquiring a test control parameter to be used in an automatic test system, wherein the test control parameter is pre-configured by the system or input by a target object in real time;
step S104, controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system;
and step S106, carrying out automatic test on the data leakage prevention system under the test environment to obtain a test result.
In the embodiment of the invention, a data leakage prevention system test mode is adopted, and test control parameters to be used in an automatic test system are obtained by responding to a received test instruction, wherein the test control parameters are pre-configured by the system or input by a target object in real time; controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; the data leakage prevention system is automatically tested under the test environment to obtain a test result, the aim of automatically testing the data leakage prevention system under the condition that a plurality of terminal devices operate concurrently is fulfilled, the technical effects of improving the automatic test efficiency and the test effect of the data leakage prevention system are achieved, and the technical problems that the test efficiency is low and the test effect is poor due to the fact that a traditional open source test frame cannot achieve the automatic test on the data leakage prevention system under the condition that the plurality of terminal devices operate concurrently are solved.
Optionally, different test environments may be simulated by changing the test control parameters, i.e. different test environments are formed. For example, the plurality of target terminals are controlled to execute the batch starting behavior and the terminal behavior by changing the test control parameters, so that the purpose of automatically testing the data leakage prevention system is achieved under the condition that a plurality of terminal devices operate simultaneously, and the performance test requirements of the data leakage prevention system such as stability and test effect are met.
Optionally, the data leakage prevention system controls the simulation terminals to start in batch according to configuration or parameters input when a user starts testing; and predefining the behavior of the analog terminal through the rule file so as to control the behavior of the analog terminal after starting.
Optionally, the target terminal may be but is not limited to a simulation terminal in an automated test system, where the automated test system (i.e. an automated test framework) at least includes: a management subsystem and a plurality of worker subsystems, wherein the management subsystem comprises: the device comprises a command analysis module, a report aggregation module and a report statistic module; the above-mentioned working machine subsystem includes: the system comprises a statistical index collection module, an actuator module, a scheduler module and a Remote Procedure Call (RPC) module, wherein each worker subsystem corresponds to a plurality of simulation terminals. Fig. 3 is a schematic structural diagram of an alternative interaction between an automatic test system and a data leakage prevention system according to an embodiment of the present invention, as shown in fig. 3, the automatic test system is connected to the data leakage prevention system for providing a test environment for performing an automatic test on the data leakage prevention system.
Optionally, the data leakage prevention system is automatically tested by a stand-alone test or a distributed test, wherein the stand-alone test tests the data leakage prevention system by starting an analog terminal in a worker subsystem; the distributed test tests the data containment system by enabling analog terminals in the plurality of worker subsystems.
As an alternative embodiment, fig. 4 is a flowchart of a testing method of an alternative data leakage prevention system according to an embodiment of the present invention, and as shown in fig. 4, acquiring test control parameters to be used in an automated testing system includes:
step S202, obtaining a test configuration file and a simulation terminal behavior rule file, wherein the test configuration file comprises: terminal description information, authentication certificate information, and user information;
step S204, obtaining a target configuration file associated with the data leakage prevention system from the test configuration file, and obtaining a target rule file associated with the data leakage prevention system from the simulation terminal behavior rule file;
step S206, generating the test control parameters based on the target configuration file and the target rule file.
Optionally, the authentication certificate information at least includes: a bidirectional authentication certificate, a unidirectional authentication certificate.
Optionally, when the test system is started, the target configuration file and the target rule file are specified by the test control parameter (i.e., the command line parameter).
In an optional embodiment, the method further includes:
step S302, predefining the behaviors of the terminals to be tested of the plurality of terminals to be tested.
Optionally, the behavior of the terminal to be tested includes at least one of the following: selecting a plurality of target terminals from a plurality of terminals to be tested, wherein the target terminals are selected as the terminals participating in the test; and determining the registration behavior, the login behavior, the logout behavior and the starting time interval of a plurality of terminals to be tested.
Optionally, the terminal behaviors of the plurality of simulation terminals (target terminals) are predefined by using a target rule through an interface of an automated testing system (i.e., an automated testing framework), wherein the target rule is stored in a target rule file, and the target rule can be obtained in a form of programming, but not limited to.
In an optional embodiment, the method further includes:
step S402, responding to the received test instruction, and acquiring a test type and a server address of the test server when starting a test, where the test type includes: one-way authentication testing and two-way authentication testing.
Optionally, a unidirectional authentication port and a bidirectional authentication port of the data leakage prevention system are designated when the test is started, wherein after the simulation terminal (i.e., the target terminal) is connected with the data leakage prevention system, interaction is performed through the unidirectional authentication port during registration; after the registration is successful, the server of the data leakage prevention system generates an authentication certificate and distributes the authentication certificate to each simulation terminal, and the simulation terminals and the data leakage prevention system interact through a bidirectional authentication port and specify the server address of the data leakage prevention system.
In an optional embodiment, the method further includes:
step S502, obtaining the test load data of the automatic test system;
step S504, determining whether to add a new test node to the automated test system according to the test load data, so as to improve the load capability of the automated test system.
Optionally, after the test is started, new test nodes are added to the automatic test system according to the test load condition, that is, the number of the analog terminals is increased, so as to provide a larger-scale load capacity and further test the performance of the data side leakage system.
In an alternative embodiment, after performing an automated test on the data leakage prevention system under the test environment to obtain a test result, the method further includes:
step S602, responding to the received test result display instruction, and displaying the test result.
Optionally, the test result is used as a basis for the test object to determine whether to increase the test pressure, and the test result includes time consumption of each test logic in the current rule file and time consumption of the relevant API interface.
Optionally, after the system test is started, the current test result may be obtained in real time, the test result reflects the time consumption of each test logic in the current rule file and the time consumption of the relevant API interface, and meanwhile, the test pressure may be increased at any time (i.e., the book strength of the simulation terminal is increased) according to the response condition of the data leakage prevention system. For example, after the current test pressure is found to be insufficient, a stop request is sent to the stop test interface, and then more analog terminals are started, or the analog terminals are started faster by starting the interval parameters to test the load limit of the data leakage prevention system.
As an alternative embodiment, fig. 5 is a flowchart of a testing method of an alternative data leakage prevention system according to an embodiment of the present invention, and as shown in fig. 5, after performing an automated test on the data leakage prevention system under the testing environment to obtain a testing result, the method further includes:
step S702, counting all the test results associated with the data leakage prevention system;
step S704, generating a test report based on all the test results;
step S706, displaying the test report.
Optionally, the test results generated by all the test nodes in the automatic test system are periodically summarized to the master control node in the automatic test system.
Optionally, as shown in fig. 2, after the test is started, a worker node (i.e., worker node) of the worker system corresponding to the simulation terminal may be started, and a test report is generated, the test report corresponding to the worker node may be periodically summarized to the master control node (i.e., node corresponding to the manager subsystem), and the test report of the current data leakage prevention system may be obtained through an interface of the system.
As an alternative embodiment, fig. 6 is a flowchart of a testing method of an alternative data leakage prevention system according to an embodiment of the present invention, and as shown in fig. 6, the testing method includes simulating a terminal test configuration file, rule configuration, test start/stop, and test result collection, specifically: generating a data file of the analog terminal according to the configuration, wherein the data file comprises description information (namely, one-way authentication certificate information, two-way authentication certificate information, user information and the like) of the analog terminal and an analog terminal behavior rule file, and the rule file is generated according to a rule file template predefined by a user; when the test system is started, the metadata directory and the rule file directory are appointed through the command line parameters, namely the data files and the behavior rule files are appointed through the command line parameters; after the test system is started, a tester sends a test instruction to the test system in an http mode, a load node of the test is designated according to a test scene, the number of terminals is simulated, and the terminals are tested according to a well-defined behavior rule file; after the system test is started, a tester can obtain a current test result in real time, the time consumption of each test logic in a current rule file and the time consumption of a relevant API interface are reflected in the test result, meanwhile, the test pressure can be increased at any time according to the response of the system, for example, when the test pressure is found to be insufficient, an http request is sent to stop the test of the test interface, then more simulation terminals are started, or the simulation terminals are started more quickly through starting interval parameters. After the simulation terminals are started, predefined behaviors can be carried out concurrently, and then the limit of the system is measured; after the test is finished, a stop instruction is executed, and the system can count all relevant data to report and send the data to a tester for checking.
The embodiment of the invention can at least realize the following technical effects: the single machine of the test method provided by the embodiment of the invention supports the stable operation of 1 ten thousand to 5 thousand analog terminals, and is greatly improved compared with a Jmeter single machine and thousands of analog terminals; only the data file of the analog terminal needs to be automatically generated, and the independent binary program is started, so that the terminal can be opened for use in any x86 environment; by integrating the rule engine, a tester can adjust the rule file more flexibly and realize the pressure test simulation of different logics in different scenes. The tester can dynamically adjust the test rule in real time according to the test condition, and the interactivity is stronger.
Example 2
According to an embodiment of the present invention, there is also provided an apparatus embodiment for implementing the testing method of the data leakage prevention system, fig. 7 is a schematic structural diagram of a testing apparatus of the data leakage prevention system according to an embodiment of the present invention, as shown in fig. 7, the testing apparatus of the data leakage prevention system is applied to an automated testing system, the automated testing system is used for performing automated testing on a plurality of target terminals connected to the data leakage prevention system, and the testing apparatus includes: an obtaining module 800, a control module 802, and a testing module 804, wherein:
the obtaining module 800 is configured to respond to a received test instruction, and obtain a test control parameter to be used in an automated test system, where the test control parameter is pre-configured by the system or input by a target object in real time;
the control module 802 is configured to control a plurality of target terminals to execute a batch start behavior and a terminal behavior according to the test control parameters, so as to obtain a test environment, where the target terminals are service objects of the data leakage prevention system;
the test module 804 is configured to perform an automated test on the data leakage prevention system under the test environment to obtain a test result.
It should be noted that the above modules may be implemented by software or hardware, for example, for the latter, the following may be implemented: the modules can be located in the same processor; alternatively, the modules may be located in different processors in any combination.
It should be noted that the acquiring module 800, the control module 802, and the testing module 804 correspond to steps S102 to S106 in embodiment 1, and the modules are the same as the corresponding steps in the implementation example and application scenario, but are not limited to the disclosure in embodiment 1. It should be noted that the modules described above may be implemented in a computer terminal as part of an apparatus.
It should be noted that, reference may be made to the relevant description in embodiment 1 for alternative or preferred embodiments of this embodiment, and details are not described here again.
The testing device of the data leakage prevention system may further include a processor and a memory, and the acquiring module 800, the control module 802, the testing module 804, and the like are all stored in the memory as a program unit, and the processor executes the program unit stored in the memory to implement corresponding functions.
The processor comprises a kernel, and the kernel calls a corresponding program unit from the memory, wherein one or more than one kernel can be arranged. The memory may include volatile memory in a computer readable medium, Random Access Memory (RAM) and/or nonvolatile memory such as Read Only Memory (ROM) or flash memory (flash RAM), and the memory includes at least one memory chip.
According to an embodiment of the present application, there is also provided an embodiment of a computer-readable storage medium. Optionally, in this embodiment, the computer-readable storage medium includes a stored program, where when the program runs, the apparatus in which the computer-readable storage medium is located is controlled to execute the testing method of any one of the data leakage prevention systems.
Optionally, in this embodiment, the computer-readable storage medium may be located in any one of a group of computer terminals in a computer network, or in any one of a group of mobile terminals, and the computer-readable storage medium includes a stored program.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: responding to a received test instruction, and acquiring test control parameters to be used in the automatic test system, wherein the test control parameters are pre-configured by the system or input by a target object in real time; controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; and automatically testing the data leakage prevention system under the test environment to obtain a test result.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: acquiring a test configuration file and a simulation terminal behavior rule file, wherein the test configuration file comprises: terminal description information, authentication certificate information, and user information; obtaining a target configuration file associated with the data leakage prevention system from the test configuration file, and obtaining a target rule file associated with the data leakage prevention system from the simulation terminal behavior rule file; and generating the test control parameters based on the target configuration file and the target rule file.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: predefining terminal behaviors to be tested of a plurality of terminals to be tested, wherein the terminal behaviors to be tested comprise at least one of the following behaviors: selecting a plurality of target terminals from a plurality of terminals to be tested, wherein the target terminals are selected as the terminals participating in the test; and determining the registration behavior, the login behavior, the logout behavior and the starting time interval of a plurality of terminals to be tested.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: responding to the received test instruction, and acquiring a test type and a server address of a test server when starting a test, wherein the test type comprises: one-way authentication testing and two-way authentication testing.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: acquiring test load data of the automatic test system; and determining whether to add a new test node into the automatic test system according to the test load data so as to improve the load capacity of the automatic test system.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: and responding to the received test result display instruction, and displaying the test result, wherein the test result is used as a basis for determining whether to increase the test pressure by the test object, and the test result comprises the time consumption of each test logic in the current rule file and the time consumption of the relevant API.
Optionally, the program controls, when executed, an apparatus on which the computer-readable storage medium is located to perform the following functions: counting all the test results associated with the data leakage prevention system, wherein the test results generated by all the test nodes in the automatic test system are periodically summarized to a main control node in the automatic test system; generating a test report based on all the test results; and displaying the test report.
According to an embodiment of the present application, there is also provided an embodiment of a processor. Optionally, in this embodiment, the processor is configured to execute a program, where the program executes the method for testing any one of the data leakage prevention systems.
There is also provided, in accordance with an embodiment of the present application, an embodiment of an electronic device, including a memory and a processor, the memory having a computer program stored therein, the processor being configured to execute the computer program to perform any one of the above-mentioned methods for testing a data leakage prevention system.
There is also provided, in accordance with an embodiment of the present application, an embodiment of a computer program product, which, when executed on a data processing apparatus, is adapted to execute a program of initializing test method steps of a data leakage prevention system having any of the above-mentioned.
Optionally, the computer program product is adapted to perform a program for initializing the following method steps when executed on a data processing device: responding to a received test instruction, and acquiring test control parameters to be used in the automatic test system, wherein the test control parameters are pre-configured by the system or input by a target object in real time; controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system; and automatically testing the data leakage prevention system under the test environment to obtain a test result.
The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.
In the above embodiments of the present invention, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
In the embodiments provided in the present application, it should be understood that the disclosed technology can be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units may be a logical division, and in actual implementation, there may be another division, for example, multiple units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, units or modules, and may be in an electrical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a computer-readable storage medium and includes several instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned computer-readable storage media comprise: a U-disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic or optical disk, and other various media capable of storing program codes.
The foregoing is only a preferred embodiment of the present invention, and it should be noted that, for those skilled in the art, various modifications and decorations can be made without departing from the principle of the present invention, and these modifications and decorations should also be regarded as the protection scope of the present invention.
Claims (10)
1. A method of testing a data leakage prevention system, comprising:
responding to a received test instruction, and acquiring test control parameters to be used in the automatic test system, wherein the test control parameters are pre-configured by the system or input by a target object in real time;
controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system;
and automatically testing the data leakage prevention system in the test environment to obtain a test result.
2. The method of claim 1, wherein obtaining test control parameters to be used in an automated test system comprises:
acquiring a test configuration file and a simulation terminal behavior rule file, wherein the test configuration file comprises: terminal description information, authentication certificate information, and user information;
obtaining a target configuration file associated with the data leakage prevention system from the test configuration file, and obtaining a target rule file associated with the data leakage prevention system from the simulation terminal behavior rule file;
and generating the test control parameters based on the target configuration file and the target rule file.
3. The method of claim 1, further comprising:
predefining terminal behaviors to be tested of a plurality of terminals to be tested, wherein the terminal behaviors to be tested comprise at least one of the following:
selecting a plurality of target terminals from a plurality of terminals to be tested, wherein the target terminals are selected as the terminals participating in the test;
and determining the registration behavior, the login behavior, the logout behavior and the starting time interval of a plurality of terminals to be tested.
4. The method of claim 1, further comprising:
responding to the received test instruction, and acquiring a test type and a server address of a test server when starting a test, wherein the test type comprises: one-way authentication testing and two-way authentication testing.
5. The method of claim 1, further comprising:
acquiring test load data of the automatic test system;
and determining whether a new test node is added into the automatic test system or not according to the test load data so as to improve the load capacity of the automatic test system.
6. The method of claim 1, wherein the data containment system is automatically tested in the test environment, and after obtaining test results, the method further comprises:
and responding to a received test result display instruction, and displaying the test result, wherein the test result is used as a basis for determining whether to increase the test pressure by the test object, and the test result comprises the time consumption of each test logic in the current rule file and the time consumption of a relevant API (application program interface).
7. The method of claim 1, wherein the data containment system is automatically tested in the test environment, and after obtaining test results, the method further comprises:
counting all the test results associated with the data leakage prevention system, wherein the test results generated by all the test nodes in the automatic test system are periodically summarized to a main control node in the automatic test system;
generating a test report based on all the test results;
and displaying the test report.
8. A testing apparatus for a data leakage prevention system, applied to an automated testing system for automatically testing a plurality of target terminals connected to the data leakage prevention system, the apparatus comprising:
the system comprises an acquisition module, a storage module and a control module, wherein the acquisition module is used for responding to a received test instruction and acquiring test control parameters to be used in the automatic test system, and the test control parameters are pre-configured by the system or input by a target object in real time;
the control module is used for controlling a plurality of target terminals to execute batch starting behaviors and terminal behaviors according to the test control parameters to obtain a test environment, wherein the target terminals are service objects of the data leakage prevention system;
and the test module is used for automatically testing the data leakage prevention system in the test environment to obtain a test result.
9. A computer-readable storage medium storing a plurality of instructions adapted to be loaded by a processor and to perform a method of testing a data leakage prevention system according to any one of claims 1 to 7.
10. An electronic device comprising a memory and a processor, wherein the memory has stored therein a computer program, and the processor is configured to execute the computer program to perform a method of testing a data leakage prevention system according to any one of claims 1 to 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111547754.5A CN114328196A (en) | 2021-12-16 | 2021-12-16 | Method, device and equipment for testing data leakage prevention system and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111547754.5A CN114328196A (en) | 2021-12-16 | 2021-12-16 | Method, device and equipment for testing data leakage prevention system and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114328196A true CN114328196A (en) | 2022-04-12 |
Family
ID=81053565
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111547754.5A Pending CN114328196A (en) | 2021-12-16 | 2021-12-16 | Method, device and equipment for testing data leakage prevention system and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114328196A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114637690A (en) * | 2022-05-09 | 2022-06-17 | 北京航天驭星科技有限公司 | API penetration test method, system, electronic equipment and storage medium |
Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108683563A (en) * | 2018-05-18 | 2018-10-19 | 北京奇安信科技有限公司 | A kind of distribution access performance test methods, apparatus and system |
| CN109698771A (en) * | 2018-12-07 | 2019-04-30 | 网易(杭州)网络有限公司 | Game server method for testing pressure and device |
| CN109739708A (en) * | 2019-01-02 | 2019-05-10 | 网易(杭州)网络有限公司 | Test the methods, devices and systems of pressure |
| CN110162452A (en) * | 2019-04-30 | 2019-08-23 | 广州微算互联信息技术有限公司 | A kind of analog detection method, device and storage medium for testing and control service |
| CN110166328A (en) * | 2019-07-05 | 2019-08-23 | 南方电网科学研究院有限责任公司 | Testing device of demand response equipment |
| CN110175110A (en) * | 2019-05-31 | 2019-08-27 | 深圳前海微众银行股份有限公司 | Method for testing pressure, device, system, equipment and computer readable storage medium |
| CN111124850A (en) * | 2019-11-12 | 2020-05-08 | 上海移远通信科技有限公司 | MQTT server performance testing method, system, computer equipment and storage medium |
| CN111400184A (en) * | 2020-03-17 | 2020-07-10 | 腾讯科技(深圳)有限公司 | Game testing method, device, system, equipment and cloud platform |
| CN112799950A (en) * | 2021-02-04 | 2021-05-14 | 北京中交兴路信息科技有限公司 | Background service load capacity test system and method, storage medium and electronic device |
| CN113127356A (en) * | 2021-04-22 | 2021-07-16 | 挂号网(杭州)科技有限公司 | Pressure measurement method and device, electronic equipment and storage medium |
| CN113590403A (en) * | 2021-08-05 | 2021-11-02 | 北京百度网讯科技有限公司 | Pressure testing method, device, system, electronic equipment, storage medium and product |
| CN113765745A (en) * | 2021-08-13 | 2021-12-07 | 视联动力信息技术股份有限公司 | Service performance testing method and device, terminal equipment and storage medium |
-
2021
- 2021-12-16 CN CN202111547754.5A patent/CN114328196A/en active Pending
Patent Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108683563A (en) * | 2018-05-18 | 2018-10-19 | 北京奇安信科技有限公司 | A kind of distribution access performance test methods, apparatus and system |
| CN109698771A (en) * | 2018-12-07 | 2019-04-30 | 网易(杭州)网络有限公司 | Game server method for testing pressure and device |
| CN109739708A (en) * | 2019-01-02 | 2019-05-10 | 网易(杭州)网络有限公司 | Test the methods, devices and systems of pressure |
| CN110162452A (en) * | 2019-04-30 | 2019-08-23 | 广州微算互联信息技术有限公司 | A kind of analog detection method, device and storage medium for testing and control service |
| CN110175110A (en) * | 2019-05-31 | 2019-08-27 | 深圳前海微众银行股份有限公司 | Method for testing pressure, device, system, equipment and computer readable storage medium |
| CN110166328A (en) * | 2019-07-05 | 2019-08-23 | 南方电网科学研究院有限责任公司 | Testing device of demand response equipment |
| CN111124850A (en) * | 2019-11-12 | 2020-05-08 | 上海移远通信科技有限公司 | MQTT server performance testing method, system, computer equipment and storage medium |
| CN111400184A (en) * | 2020-03-17 | 2020-07-10 | 腾讯科技(深圳)有限公司 | Game testing method, device, system, equipment and cloud platform |
| CN112799950A (en) * | 2021-02-04 | 2021-05-14 | 北京中交兴路信息科技有限公司 | Background service load capacity test system and method, storage medium and electronic device |
| CN113127356A (en) * | 2021-04-22 | 2021-07-16 | 挂号网(杭州)科技有限公司 | Pressure measurement method and device, electronic equipment and storage medium |
| CN113590403A (en) * | 2021-08-05 | 2021-11-02 | 北京百度网讯科技有限公司 | Pressure testing method, device, system, electronic equipment, storage medium and product |
| CN113765745A (en) * | 2021-08-13 | 2021-12-07 | 视联动力信息技术股份有限公司 | Service performance testing method and device, terminal equipment and storage medium |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114637690A (en) * | 2022-05-09 | 2022-06-17 | 北京航天驭星科技有限公司 | API penetration test method, system, electronic equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104765678B (en) | The method and device tested the application on mobile terminal device | |
| US10956424B2 (en) | Application recommending method and system, and server | |
| CN110377520B (en) | Transaction scenario testing method and device, electronic equipment and readable storage medium | |
| CN104834602B (en) | A kind of program dissemination method, device and program delivery system | |
| CN105787364B (en) | Automatic testing method, device and system for tasks | |
| CN110740053A (en) | Service arranging method and device | |
| CN111881014B (en) | System test method, device, storage medium and electronic equipment | |
| CN112769810B (en) | Firewall testing method and device, nonvolatile storage medium and electronic device | |
| CN111695827B (en) | Business process management method and device, electronic equipment and storage medium | |
| CN111813495B (en) | Node testing method and device, storage medium and electronic device | |
| CN111258913A (en) | Automatic algorithm testing method and device, computer system and readable storage medium | |
| WO2023131343A1 (en) | Stress test method and system, and device and storage medium | |
| CN106557404B (en) | Application control method and mobile terminal | |
| CN109597764A (en) | A kind of test method and relevant apparatus of catalogue quota | |
| CN107679423A (en) | Partition integrity inspection method and device | |
| CN113747150B (en) | Method and system for testing video service system based on container cloud | |
| CN114328196A (en) | Method, device and equipment for testing data leakage prevention system and storage medium | |
| WO2021253239A1 (en) | Method and apparatus for determining resource configuration of cloud service system | |
| CN113452556A (en) | Product skill configuration method and device, storage medium and electronic device | |
| US20220206836A1 (en) | Method and Apparatus for Processing Virtual Machine Migration, Method and Apparatus for Generating Virtual Machine Migration Strategy, Device and Storage Medium | |
| CN111131440B (en) | Resource scheduling method and device and server | |
| CN107025126B (en) | Resource scheduling method, NFVO and system | |
| CN112256588A (en) | Resource allocation method for application program test, computer readable storage medium and tester | |
| CN105912431A (en) | Reboot testing method of server, server, control device and system | |
| CN115237441A (en) | Upgrade test method, device and medium based on cloud platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |