LucciTech load balancing network security test report
Product overview
Luccitech Application DeliveryPlatformLC1.2.9LucciTech Technology(Shenzhen) Co., Ltd.Co., Ltd.ishardware. ofproducts canbepeoplethrough agingthe WEBInterface(HTTPS) and commandsline, bracketLinkload, serverloadandGlobalnegativeBalance, Bracketloadbalanced scheduling algorithmhms, suchPolling, WeightedPolling, Weightedminimum connection, source addresshash,, etc,Bracketlink status check, server statusinspection,ServerPassive StateInspectionandApplicationPerformancemonitoring, supportunilateral acceleration, TCP
Connectionreuse, SSL acceleration,RAM cpain,HTTP compression,ServerOnlineandexit optimization,inbound and outboundLinkbusy.protection, QoS,IP-Anycast,Server SurgeProtection, Asymmetricloadbalance andimage optimization
transcoding and other optimizations,Support Clusteringdeployment, featuresRecovery, Dualhot standby and fault alarmandOtherfunction. ofproducts using a2U chassis architecture. The frontPanelprovided1Serialport,2USBport, 6 Gigabit eleElectricalports, andRearPanelprovided1VGAport. ofLordHardware Configurationis:Processor:Intel(R) Corei3-6100(3.70GHz2 cores),memory: 8GB,storage:128G.
Product Safety Testing
This cybersecurity test is designed to evaluaterisk and vulnerabilitycompany's network equipment:anddevelopmentCorrespondingSafetymeasurespreventpotentialNetworkattack.testavarietiescommonAttackmethodandin-depthtestonvariousaspectssystem. ofthe following is the testResultsstesting.
|
sampleName |
Luccitech ApplicationsDeliveryPlatform |
|
|
Model specification/versionNumber |
LC v1.2.9 |
|
|
NameUnit |
LucciTech Technology(Shenzhen) Co., Ltd.Co., Ltd. |
|
|
NameproductionUnit |
LucciTech Technology(Shenzhen) Co., Ltd.Co., Ltd. |
|
|
testDate |
April26,2023 |
|
|
detectionFoundation |
Information Security TechnologyloadbalanceProduct Safety TechnologyRequirements GA/T1726-2020(Enhanced) Information Security Technologypenetration test deprotection Conditions JCTJ 005-2016(6.2.1,6.2.2) |
|
|
JudgmentFoundation |
Information Security TechnologyloadbalanceProduct Safety TechnologyRequirements GA/T1726-2020(Enhanced) Information Security Technologypenetration test deprotectionConditions JCTJ 005-2016(6.2.1,6.2.2) |
|
|
testConclusion |
Luccitech ApplicationsDeliveryPlatformLC v1.2.9c testLucciTech Technology(Shenzhen) Co., Ltd.Co., Ltd.havewas foundcomplianceRequirementsRelatedregulationsinInformation Security TechnologyloadbalanceProduct SafetyTechnologyRequirements GA/T1726 2020(Enhanced)-Information Security TechnologyPenetration TestDprotectionConditions JCTJ 005-2016(6.2.1,6.2.2). |
|
1. Security functionnRequirements
1.1.loadbalance
|
testContent |
level Requirements |
testRequirements |
testResults |
Remarks |
|
|
basic |
Enhancement |
||||
|
Linkloadbalance |
* |
* |
have |
compliance |
None |
|
Serverloadbalance |
* |
* * |
have |
compliance |
None |
|
Global Loadbalance |
* |
* |
have |
compliance |
None |
1.2. load balancing scheduling algorithmmsupport
|
testContent |
level Requirements |
test requirem ents |
testResults |
Remarks |
|
|
basic |
Enhancement |
||||
|
load balancingscheduling algorithmsupport |
* |
* * |
have |
compliance |
None |
1.3. Components andLink Monitoring
|
testContent |
level Requirements |
test requireme nts |
Test Results |
Remarks |
|
|
basic |
Enhancement |
||||
|
LinkStatusInspection |
* |
* |
have |
compliance |
None |
|
Server StatusInspection |
* |
* |
have |
compliance |
None |
|
Server PassiveStatuscheck |
/ |
* |
have |
compliance |
None |
|
Application Performancemonitoring |
/ |
* |
have |
compliance |
None |
1.4. Optimization and acceleration
|
testContent |
level Requirements |
test requirements |
testResults |
Remarks |
|
|
basic |
Enhancement |
||||
|
one-sideacceleration |
/ |
* |
have |
compliance |
None |
|
TCP connection multiplexing |
* |
* * |
have |
compliance |
None |
|
SSL Acceleration |
* |
* |
have |
compliance |
None |
|
RAM Cache |
* |
* |
have |
compliance |
None |
|
HTTP compression |
* |
* |
have |
compliance |
None |
|
ServerStartup andexportoptimization |
/ |
* |
have |
compliance |
None |
|
InboundandOutboundLinkbusy.protection |
/ |
* |
have |
compliance |
None |
|
QoS |
* |
* |
have |
compliance |
None |
|
IP-Anycast |
* |
* |
have |
compliance |
None |
|
ServerSurge Protection |
/ |
* |
have |
compliance |
None |
|
asymmetryload balancing |
/ |
* |
have |
compliance |
None |
|
Imageoptimizationtranscoding |
/ |
* |
have |
compliance |
None |
1.5. Session Persistence
|
testContent |
level Requirements |
test requirements |
Test Results |
Remarks |
|
|
basic |
Enhancement |
||||
|
Session Persistence |
* |
* |
have |
compliance |
None |
1.6. EquipmentAccesscontrol
|
testContent |
level Requirements |
test requirements |
testResults |
Remarks |
|
|
basic |
Enhancement |
||||
|
Device Accesscontrol |
* |
* |
have |
compliance |
None |
1.7.High Availability
|
testContent |
level Requirements |
test requirements |
testResults |
Remarks |
|
|
basic |
Enhancement |
||||
|
ClusterDeployment |
/ |
* |
have |
compliance |
None |
|
function recovery |
* |
* |
have |
compliance |
None |
|
heatStandby |
/ |
* |
have |
compliance |
None |
|
faultAlarm |
* |
* |
have |
compliance |
None |
1.8.Personal safety
|
testContent |
level Requirements |
testRequirements |
testResults |
Remarks |
|
|
basic |
Enhancement |
||||
|
authentication failedprocessing |
* |
* |
have |
compliance |
None |
|
UseaListAuthenticationand management mechanisms |
* |
* |
have |
compliance |
None |
|
Log |
* |
* |
have |
compliance |
None |
|
Managementsafety functiondata |
* |
* |
have |
compliance |
None |
1.9. NetworkLayer DDOS Attackprotection
|
testProject |
test requirements |
Resultsvalue |
testResults |
Remarks |
|
|
Network layer DDOS Attack Protection |
shouldbecanidentification andprotectionNetworklayerDDosAttack,testDuration300s |
have |
100 percent |
compliance |
take Averagethreetimes |
1.10. Application LayerDDOSAttackprotection
|
testProject |
test requirements |
Resultsvalue |
testResults |
Remarks |
|
|
Application openlayer DDOS Attack Protection |
Applicationlayer should be identification andprotected DDosAttack,Test Duration300s |
have |
100 percent |
compliance |
takeAveragethreetimes |
Note:/indicates that this item is not required, *representationthat.this.projects have level requirements,and* *representationthat.thisproject hasEnhancementlevel of content.
Safetyfunction"Productscomplianceand"InformationSecurity Technology Load BalancingAcupuncture ProductsSafetyTechnologyRequirements"GA/T 1726-2020.
2. SecurityRequirements
2.1 development
|
testContent |
Level Requirements |
test requirem ents |
test Results |
Remarks |
|
|
basic |
Enhancement |
||||
|
Security Architecture |
* |
* |
have |
compliance |
Document Review,Number include SiteReview |
|
Functional Specifications |
* |
* * |
have |
compliance |
|
|
implementation |
/ |
* |
have |
compliance |
|
|
Product Design |
* |
* * |
have |
compliance |
|
2.2. Guidance documents
|
testContent |
Level Requirements |
testRequirements |
test Results |
Remarks |
|
|
basic |
Enhancement |
||||
|
OperationUserGuide |
* |
* |
have |
compliance |
Document Review,NumberincludeSiteReview |
|
Preparation Procedure |
* |
* |
have |
compliance |
|
2.3. Life Cyclesupport
|
testContent |
levelRequirements |
test requirem ents |
detection Results fruit |
Remarks |
|
|
basic |
Enhancement |
||||
|
Configuration Managementcapacity |
* |
* * |
have |
compliance |
Document Review ,NumberSite Review |
|
Configuration Management |
* |
* * |
have |
compliance |
|
|
Delivery Procedure |
* |
* |
have |
compliance |
|
|
developmentSafety |
/ |
* |
have |
compliance |
|
|
life cycle |
/ |
* |
have |
compliance |
|
|
ToolsandTechnology |
/ |
* |
have |
compliance |
|
2.4.test
|
testContent |
levelRequirements |
testRequirementspieces |
detectionResultsfruit |
Remarks |
|
|
basic |
Enhancement |
||||
|
testCoverage |
* |
* * |
have |
compliance |
Document Review,Number open-SiteReview |
|
testdepth |
/ |
* |
have |
compliance |
|
|
Functiontest |
* |
* |
have |
compliance |
|
|
Independent testing |
* |
* |
have |
compliance |
|
2.5. VulnerabilityAssessmentnt
|
testContent |
levelRequirements |
test Requirements pieces |
detection Results fruit |
Remarks |
|
|
basic |
Enhancement |
||||
|
vulnerability assessment |
* |
* * |
have |
compliance |
Document Review ,NumberSiteReview |
Note:/indicates that this item is not required, *representationthat.this.projects have level requirements,and* *representationthat.thisproject hasEnhancementlevel of content.
Safetyfunction"Productscomplianceand"InformationSecurity Technology Load BalancingAcupuncture ProductsSafetyTechnologyRequirements"GA/T 1726-2020.
3,safety testing
3.1. Safety requirements
|
testContent |
testResults |
Remarks |
|
safety requirements |
Pass |
Productsismodified,Numberhighor riskSafetyisFoundretest. vulnerabilityproblem |
, retest, product passedthe "Information Security"TechnologyOverviewPenetworktestdetection,conditions"JCTJ005-2016SafetyRequirementsDescriptioninRelatedclause(6.2.1,6.2.2).
