SECURITY MANAGEMENT SYSTEM FOR PERFORMING VULNERABILITY ANALYSIS

摘要

According to various embodiments of the present invention, a security management system is provided to digitize vulnerability report contents in a form of a user sentence and to set a countermeasure priority based on the digitized vulnerability report contents. According to an embodiment of the present invention, the security management system comprises: an administrator server performing a target analysis based on basic information received from a target server, providing an inspection reference per a target in accordance with a result of the performed target analysis, and calculating a countermeasure based on vulnerability received from the target server; and a target server providing the basic information inputted by a user to the administrator server, analyzing the vulnerability corresponding to the inspection reference per a target received from the administrator server, calculating a degree of a risk based on the analyzed vulnerability, requesting a countermeasure to the administrator server in an order of high risk items based on the calculated degree of a risk, and receiving and applying the countermeasure from the administrator server.