Network security simulation system
First Claim
1. A network security simulation system comprising:
- a component model base for representing network components by means of a system entity structure representing a structure of a system and a model base indicating behavioral characteristics of the system and librarizing the network components as model objects;
a network configuration unit for selecting network components from the component model base according to user'"'"'s selection and configuring a target network, assigning properties to the selected network components, and setting at least one network component of the network components to be an attacker node and at least one different network component of the network components to be a target node;
a command input unit for inputting hacking commands to the attacker node, the hacking commands being assigned to the attacker node;
a simulation engine for sending the commands from the command input unit through a network generated by a simulation model generation unit to a set target model according to each component, determining whether to execute the commands, and changing properties of the model according to an execution result;
a result analysis unit for displaying a result of the simulation of the simulation engine; and
a graphical user interface (GUI) for receiving inputs from a user and displaying a result according to the inputs.
1 Assignment
0 Petitions
Accused Products
Abstract
A network security simulation system. The network security simulation system is capable of analyzing a hacking procedure through a simulation on a network. The network security simulation system is based on a component model base which librarizes each component of a network system as an object. The network system which is an analysis target can be freely designed based on the library. At least one attacker node and at least one target node are set in the designed network system. Hacking commands are transmitted from the attacker node to a target node through various components of the network system to change a state of the target node. The changed target node state is analyzed by a result analysis unit and then provided to a user.
55 Citations
7 Claims
-
1. A network security simulation system comprising:
-
a component model base for representing network components by means of a system entity structure representing a structure of a system and a model base indicating behavioral characteristics of the system and librarizing the network components as model objects;
a network configuration unit for selecting network components from the component model base according to user'"'"'s selection and configuring a target network, assigning properties to the selected network components, and setting at least one network component of the network components to be an attacker node and at least one different network component of the network components to be a target node;
a command input unit for inputting hacking commands to the attacker node, the hacking commands being assigned to the attacker node;
a simulation engine for sending the commands from the command input unit through a network generated by a simulation model generation unit to a set target model according to each component, determining whether to execute the commands, and changing properties of the model according to an execution result;
a result analysis unit for displaying a result of the simulation of the simulation engine; and
a graphical user interface (GUI) for receiving inputs from a user and displaying a result according to the inputs. - View Dependent Claims (2, 3, 4, 6, 7)
-
-
5. The network security simulation system as set forth in 4, wherein the component model base includes:
-
a routing service unit for distributing network packets;
an OS service unit associated with a host service for maintaining an operating system, an invader sensing service associated with an invasion sensing function, a Web service unit, an E-mail service unit and a service coordinator for coordinating the entire processes through inputs to and output from each of the service units.
-
Specification