Diagnostic method for vulnerabilities of information security based on port logistics information system

摘要

The present invention relates to an information protection vulnerability diagnosis method for a port logistics information system, which is to process, share, collect, and analyze information related to marine transport. The information protection vulnerability diagnosis method for a port logistics information system comprises: a step in which the plurality of information systems that are connected through a closed network are connected with an inside diagnosis server, thereby installing agents corresponding to an operating system (OS) of each of a plurality of information systems depending on whether the agent is installed in each information system or not; a step which collects vulnerability diagnosis data according to diagnosis items from the agents installed in each of the information system; a step which collects environment change data from a physical environment sensor included in each of the information system; a step in which the inside diagnosis server collects and stores data from the agents and physical environment sensors; a step which transmits the vulnerability diagnosis data or environment change data collected by the inside diagnosis server to a security diagnosis server in an outside network through a communication module; a step in which the security diagnosis server analyzes the received data; and a step which transmits the analysis results from the security diagnosis server to the inside diagnosis server in order to be checked and stored. Therefore, the information protection vulnerability diagnosis method for a port logistics information system can improve overall information security safety level of a port logistics information system without being limited to some devices.