摘要
伪造IP和MAC地址在网络中可实现ARP欺骗,故提出ARP的攻击与防范措施。针对局域网IP地址映像到其它主机的ARP高速缓存不需提供IP与MAC地址真实性检验,而ARP应答又无需认证的缺陷,以IPV4和IPV6防范为例,在通过目标设备的IP地址查询其MAC地址的基础上,建立网络安全信任关系解决ARP欺骗。
ARP spoof can be carried out by the way of forging IP and MAC address. Network facilities must know the 2nd physical address (MAC address) of destination facility which ARP query by IP address, when communicating directly in Ethernet. ARP cache mapped in another host is based on IP address, does not present the reality checking of IP and MAC address, and ARP reply does not need identification. For example as IPV4 and IPV6 preventive, ARP spoof can be radically resolved on the network security relations founded on IP+MAC.
出处
《兵工自动化》
2004年第4期28-30,共3页
Ordnance Industry Automation
