摘要
采用以广播为技术基础的以太网,任何两个节点之间的通信数据包,不仅为这两个节点的网卡所接收,也同时为处在同一以太网上的任何一个节点的网卡所截取。因此,黑客只要接入以太网上的任一节点进行侦听,就可以捕获发生在这个以太网上的所有数据包,对其进行解包分析,从而窃取关键信息,这就是以太网所固有的安全隐患。对此,可以采用网络分段、交换式集线器代替共享集线器和VLAN的划分措施来实现其数据传输的安全。
The adoption takes broadcast as Ethernet, any correspondence data of two nodes wraps, not only ising received by these two netting cards of nodes, but also intercepting for being placed in same net card of whichever node of ether net in the meantime,Therefore, black guest as long as connect into the any node of ether net to carry on an interception, can succeed in catching occurrence to wrap in all datas of this ether net, as to it's carry on a solution to wrap analysis, steal a key information thus, this is the ether net to suffer from the proper safe .Can adopt a network cent segment and exchange a type to gather the measure that the line machine replaces a share to gather a line machine and VLAN demarcation to carry out the safety that its data delivers to this.
出处
《宁波职业技术学院学报》
2007年第2期86-88,93,共4页
Journal of Ningbo Polytechnic
