摘要
ARP(地址解析协议)[2]是内部网络的一个重要协议,完全建立在主机相互信任的基础上,这种无状态协议为安全留下了隐患。文章分析了ARP欺骗原理和现有防范技术,提出基于主动探测的ARP欺骗防范技术。通过采取主动发送诱饵消息和ICMP探测包等措施加强ARP的安全性。该技术适合多种平台,可防范多种类型的ARP欺骗。
ARP is an important protocol for the intranet, which is completely based on the mutual trust of the hosts, and this stateless protocol leaves hidden troubles for the security.After analyzing ARP spoofing theory and existing countermeasures, this paper puts forward an anti-ARP spoofing technology based on proactive detection, which enhances ARP security by proactively sending bait information and ICMP detection packages. This method is applicable to many platforms, and can prevent many types of ARP spoofing.
出处
《信息安全与通信保密》
2009年第2期51-53,共3页
Information Security and Communications Privacy
基金
西安交通大学"机械制造系统工程"国家重点实验室开放基金赞助
