| 防止网络ARP欺骗攻击的S—ARP协议 |
| |
| 引用本文: | 孙晔. 防止网络ARP欺骗攻击的S—ARP协议[J]. 实验科学与技术, 2009, 7(3): 63-64 |
| |
| 作者姓名: | 孙晔 |
| |
| 作者单位: | 成都理邦系统工程技术有限公司,成都,610041 |
| |
| 摘 要: | 传统的IP—ARP协议缺乏基本的认证与完整性检查措施,导致ARP欺骗的安全攻击相当流行。S—ARP协议试图对传统的IP—ARP协议进行简单扩展并实现,主要通过对ARP报文进行认证及完整性检查措施来防止ARP欺骗攻击。该协议具体实现的方法是在内网Pc机上安装一个包含S—ARP协议的客户端软件,同时,在路由器上也添加了相应的协议模块,使ARP的广播报文是在有安全认证机制下进行各个结点之间的ARP类的信息交换,而ARP病毒软件发出的欺骗类的ARP报文不合有认证信息会被丢弃,自然也就无法产生影响了。
|
| 关 键 词: | S—ARP协议 ARP欺骗 防止ARP攻击 |
S-ARP Protocol to Prevent ARP Spoofing and Attack on Network |
| |
| SUN Ye. S-ARP Protocol to Prevent ARP Spoofing and Attack on Network[J]. Experiment Science & Technology, 2009, 7(3): 63-64 |
| |
| Authors: | SUN Ye |
| |
| Affiliation: | SUN Ye ( Chengdu State the Rationale for System Engineering Technology Co. , Ltd. , Chengdu 610041, China) |
| |
| Abstract: | The traditional IP - ARP protocol lacks of basic certfication and integrity of inspection measures, which leads to the prevailing deception of security of ARP attack. This protocol attempts to extend simply the traditional IP-ARP protocol and to achieve , mainly through text on the ARP Authentication and integrity of inspection measures to prevent ARP spoofing attacks. Specific imple- mentation of this Agreement is the Net PC, including the installation of a S-ARP protocol containing the client software at the same time, the corresponding protocol module is also added to the router, this make sthe ARP broadcast in the safety certification mecha- nisms under the various nodes of the ARP between the type of information exchange, and ARP-vlrus software to deceive the type issued by the ARP packet does not contain authentication information will be discarded, naturally it can not have an impact. |
| |
| Keywords: | S-ARP protocol ARP spoofing prevent ARP attacks |
| 本文献已被 维普 万方数据 等数据库收录! |
|
