Recently, the China Cybersecurity Industry Alliance CCIA officially announced the selection results of the "2023 Cybersecurity Outstanding Innovation Achievements Competition-Wuhan Branch Competition". Open Source Network Security won the two awards of "Excellent Solution" and "Excellent Innovative Product" respectively for its "Communication Protocol Fuzz Testing Solution in the Industrial Control Field" and "Open Source Network Security Real-time Application Self-Protection Platform" .
Communication protocol fuzz testing solution in industrial control field
The open source network security industrial control field communication protocol fuzz testing solution creates a fuzz testing platform for industrial control protocol testing for customers in the industrial control field. It uses a self-developed test engine to improve the traditional fuzz testing method. Through research on the specifications of the industrial control protocol under test, The boundary values of the legal and illegal ranges of the fields are analyzed and used to build the initial mutation tree. It supports more than 60 mutation algorithms and simulates real attack scenarios. Users can also customize the input of configuration use case fields according to the actual scenario. Supports more than 10 monitoring methods to monitor the response of the device under test, analyze the causes of product defects, automate testing, reduce the requirements for testers, and improve test results.
Innovative Technology
1. Intelligently generate test cases. Write a template based on the RFC specification of the protocol, and then generate test cases based on the syntax of the template.
2. Multiple algorithm mutation algorithms. Fields of messages are randomly selected and mutated to form invalid, unexpected or random data. It supports more than 60 mutation algorithms, and the mutation engine can be expanded according to the actual situation of the tested object.
3. Multiple monitor technologies. Used to monitor the program for exceptions, such as crashes, built-in code assertion failures, or potential memory leaks. Dozens of monitors are provided, allowing multiple monitors to monitor a test object at the same time. Relying on these monitors is helpful for root cause analysis of failures generated through testing.
4. Parallel testing technology. Thanks to the centralized management mode of the test agent, it supports the execution of test agents in multiple places. After adding test tasks, it can be assigned to multiple test agents. The system automatically splits test cases and executes them in parallel to meet the needs of large-scale testing in large development centers. Require.
Open source network security real-time application self-protection platform
The open source network security real-time application self-protection platform (RASP platform) is a security product that uses instrumentation technology to achieve no manual intervention, no perception, high-precision detection and defense against external attacks during application running. The real-time application self-protection platform can quickly integrate security defense functions into running applications, giving applications self-protection capabilities like antibodies, thereby automatically immunizing external threats against applications and detecting and blocking attacks in real time.
Compared with other RASP products of the same type, the open source network security RASP platform is more suitable for application security protection in enterprise-level environments. It can support cloud native environments, effectively replace traditional WAF products, and support large-scale application deployment, fine-grained permission management mechanisms and The information encryption function keeps all attack information confidential, which not only facilitates internal security handling of security incidents, but also prevents attack information from being leaked, causing more serious negative impacts.
Innovative Technology
1. Active defense mechanism. During the application running process, the RASP application detects the internal operation of the application in real time. When an abnormal attack is discovered, it can quickly locate the attack through the setting of built-in security red lines and automatically take various defensive measures.
2. Vulnerability attack source tracing: In the management of security attack events, the RASP platform tracks, analyzes and blocks security attacks from the source.
3. Enterprise-level product security. Use the industry's most powerful Spring Security framework to achieve accurate permission isolation. All attack information is encrypted, stored and transmitted through encryption, which not only facilitates internal security handling of security incidents, but also prevents attack information from leaking, leading to more serious negative impacts.
Open source network security
A leader in software security
As a pioneer in China's software security industry, Open Source Network Security has taken "defending China's software security" as its mission since its establishment in 2013, and has launched a number of software security products with completely independent intellectual property rights (SAST, IAST, SCA, FUZZ , RASP, S-SDLC, DevSecOps, etc.), applied for more than 250 patents, participated in the formulation of 22 national standards and industry standards, and has been recognized by more than 200 Fortune 500 customers.
Open Source Network Security protects customer software security from the entire life cycle, provides customers with one-stop solutions and services such as software supply chain security, software R&D security, and security training to help customers safely innovate and make breakthroughs in digital business.