CAJ | 학술논문

各个测评机构在对智能卡产品实施脆弱性评估时，往往根据已有的脆弱性攻击方法或者工具进行测评，容易出现测评结果不一致、不全面的情况。论文结合传统产品的脆弱性评估方法，提出建立智能卡脆弱性测试平台。该平台旨在建立智能卡信息库，并在信息库的基础上建立测试用例知识库和测试工具箱，为智能卡的脆弱性测试提供基准平台，最终实现智能卡的定性或者定量化评估。
각개측평궤구재대지능잡산품실시취약성평고시，왕왕근거이유적취약성공격방법혹자공구진행측평，용역출현측평결과불일치、불전면적정황。논문결합전통산품적취약성평고방법，제출건립지능잡취약성측시평태。해평태지재건립지능잡신식고，병재신식고적기출상건립측시용례지식고화측시공구상，위지능잡적취약성측시제공기준평태，최종실현지능잡적정성혹자정양화평고。
Dif erent assessment organizations which evaIuate the vuInerabiIity of smart card utiIize dif erent at ack method or tooI to Iead to unconformity of report. The articIe at empts to estabIish smart card vuInerabiIity testing pIatform refer to traditionaI security product evaIuation methods. The purpose is to estabIish information repository, testing knowIedge repository, testing tooI kit as standard pIatform and quaIitative assessment tooI for smart card vuInerabiIity.