Cargando…
Assessing the Security of Campus Networks: The Case of Seven Universities
The network security situation of campus networks on CERNET (China Education and Research Network) has received great concern. However, most network managers have no complete picture of the network security because of its special management and the rapid growth of network assets. In this investigati...
| Autores principales: | , , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7795939/ https://www.ncbi.nlm.nih.gov/pubmed/33466335 http://dx.doi.org/10.3390/s21010306 |
| _version_ | 1783634563176595456 |
|---|---|
| author | Zheng, Rui Ma, Hao Wang, Qiuyun Fu, Jianming Jiang, Zhengwei |
| author_facet | Zheng, Rui Ma, Hao Wang, Qiuyun Fu, Jianming Jiang, Zhengwei |
| author_sort | Zheng, Rui |
| collection | PubMed |
| description | The network security situation of campus networks on CERNET (China Education and Research Network) has received great concern. However, most network managers have no complete picture of the network security because of its special management and the rapid growth of network assets. In this investigation, the security of campus networks belonging to seven universities in Wuhan was investigated. A tool called “WebHunt” was designed for campus networks, and with its help, the network security risks were found. Differently from existing tools for network probing, WebHunt can adopt the network scale and special rules of the campus network. According to the characteristics of campus websites, a series of functions were integrated into WebHunt, including reverse resolution of domain names, active network detection and fingerprint identification for software assets. Besides, WebHunt builds its vulnerability intelligence database with a knowledge graph structure and locates the vulnerabilities through matching knowledge graph information. Security assessments of seven universities presents WebHunt’s applicability for campus networks. Besides, it also shows that many security risks are concealed in campus networks, such as non-compliance IP addresses and domain names, system vulnerabilities and so on. The security reports containing risks have been sent to the relevant universities, and positive feedback was received. |
| format | Online Article Text |
| id | pubmed-7795939 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-77959392021-01-10 Assessing the Security of Campus Networks: The Case of Seven Universities Zheng, Rui Ma, Hao Wang, Qiuyun Fu, Jianming Jiang, Zhengwei Sensors (Basel) Article The network security situation of campus networks on CERNET (China Education and Research Network) has received great concern. However, most network managers have no complete picture of the network security because of its special management and the rapid growth of network assets. In this investigation, the security of campus networks belonging to seven universities in Wuhan was investigated. A tool called “WebHunt” was designed for campus networks, and with its help, the network security risks were found. Differently from existing tools for network probing, WebHunt can adopt the network scale and special rules of the campus network. According to the characteristics of campus websites, a series of functions were integrated into WebHunt, including reverse resolution of domain names, active network detection and fingerprint identification for software assets. Besides, WebHunt builds its vulnerability intelligence database with a knowledge graph structure and locates the vulnerabilities through matching knowledge graph information. Security assessments of seven universities presents WebHunt’s applicability for campus networks. Besides, it also shows that many security risks are concealed in campus networks, such as non-compliance IP addresses and domain names, system vulnerabilities and so on. The security reports containing risks have been sent to the relevant universities, and positive feedback was received. MDPI 2021-01-05 /pmc/articles/PMC7795939/ /pubmed/33466335 http://dx.doi.org/10.3390/s21010306 Text en © 2021 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Zheng, Rui Ma, Hao Wang, Qiuyun Fu, Jianming Jiang, Zhengwei Assessing the Security of Campus Networks: The Case of Seven Universities |
| title | Assessing the Security of Campus Networks: The Case of Seven Universities |
| title_full | Assessing the Security of Campus Networks: The Case of Seven Universities |
| title_fullStr | Assessing the Security of Campus Networks: The Case of Seven Universities |
| title_full_unstemmed | Assessing the Security of Campus Networks: The Case of Seven Universities |
| title_short | Assessing the Security of Campus Networks: The Case of Seven Universities |
| title_sort | assessing the security of campus networks: the case of seven universities |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7795939/ https://www.ncbi.nlm.nih.gov/pubmed/33466335 http://dx.doi.org/10.3390/s21010306 |
| work_keys_str_mv | AT zhengrui assessingthesecurityofcampusnetworksthecaseofsevenuniversities AT mahao assessingthesecurityofcampusnetworksthecaseofsevenuniversities AT wangqiuyun assessingthesecurityofcampusnetworksthecaseofsevenuniversities AT fujianming assessingthesecurityofcampusnetworksthecaseofsevenuniversities AT jiangzhengwei assessingthesecurityofcampusnetworksthecaseofsevenuniversities |