| 针对ARP攻击的网络防御模式设计与实现 |
| |
| 引用本文: | 李海鹰,程灏,吕志强,庄镇泉.针对ARP攻击的网络防御模式设计与实现[J].计算机工程,2005,31(5):170-171. |
| |
| 作者姓名: | 李海鹰 程灏 吕志强 庄镇泉 |
| |
| 作者单位: | 中国科技大学电子科学与技术系,合肥,230026 |
| |
| 基金项目: | 国家自然科学基金重点项目(90104030),中科大青年基金资助项目(BH1107) |
| |
| 摘 要: | 利用数据链路层地址解析协议(ARP)可以进行IP冲突、ARP欺骗、ARP溢出等方式的网络攻击。因为ARP具有实现IP地址到网络接口硬件地址(MAC)的映射功能,所以利用此特性在数据链路层发动的攻击具有很强的隐蔽性。针对ARP攻击的网络防御模式通过跟踪网络主机ARP缓存的变化、统计ARP数据包、主动验证ARP数据包3种方法.可以有效地侦测ARP攻击,并提供了网络防御的方法。
|
| 关 键 词: | ARP协议 网络攻击 侦测与防御 |
| 文章编号: | 1000-3428(2005)05-0170-02 |
Design and Implementation of Defense System for ARP Attack |
| |
| LI Haiying,CHENG Hao,LV Zhiqiang,ZHUANG Zhenquan.Design and Implementation of Defense System for ARP Attack[J].Computer Engineering,2005,31(5):170-171. |
| |
| Authors: | LI Haiying CHENG Hao LV Zhiqiang ZHUANG Zhenquan |
| |
| Abstract: | Via address resolution protocol in data link layer, hackers can launch various attacks, such as IP conflict attack, ARP deceive attack and ARP overflow attack. Because ARP implements the mapping between IP and MAC, malicious attacks based on ARP are difficult to detect. The defense system can effectively detect ARP attacks using tracing network ARP buffers, counting ARP packets and actively examining ARP packets. |
| |
| Keywords: | ARP Network attack Detect and defense |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
