摘要
针对利用ARP安全缺陷的攻击,分析了现有ARP安全机制的不足,在此基础上提出基于交换机的ARP安全机制。该机制使用交换机提供地址解析服务,保证地址解析的正确性,能有效防御多种基于ARP的攻击,并维持ARP协议灵活、高效和易于维护的特性,兼容性和扩展性较好,实用性较强。
According to the attacks by exploiting the vulnerabilities of ARP, analyzing the deficiency of ARP security mechanism at present, a switch-based ARP security mechanism is provided, The mechanism resorts to switch to provide address resolution service, and ensure the reliability of the address resolution service, Without reducing the flexibility, high efficiency and maintainability of ARP, this mechanism could defeat many kinds of attacks via ARP, and has characteristics of compatibility, expansibility and practicability.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第16期4162-4164,4179,共4页
Computer Engineering and Design
关键词
ARP
安全缺陷
攻击
安全机制
交换机
ARP
security vulnerability
attack
security mechanism
switch
