摘要
以开源Snort平台为基础,探讨IPv6网络的分组分段机制,对利用IPv6分组分段来攻击网络的行为进行了研究。针对其中IPv6过小分组分段、重叠分段等问题提出了相应的应对措施,设计并实现了针对分段漏洞进行检测的入侵检测机制。通过实验表明,所设计的入侵检测机制能够检测相关异常的IPv6分段分组,对Snort支持IPv6功能进行了改进和优化。
Based on open source Snort platform,the packet block mechanism in IPv6 network was discussed.The behavior using IPv6 packet fragment to attack network was studied.Against to the problems,such as too little for IPv6 packet segment,overlapping section and so on,it put forward the corresponding countermeasures.The intrusion detection system were designed and implemented for piecewise leak testing.The experiments show that the design of intrusion detection system can detect the abnormal IPv6 packet,and Snort to support for IPv6 function was improved and optimized.
出处
《电信科学》
北大核心
2013年第10期108-113,共6页
Telecommunications Science
基金
国家自然科学基金资助项目(No.61273075
No.61172133)
浙江省大学生新苗人才计划科技成果推广基金资助项目(No.2012R407057)
杭州电子科技大学优秀学位论文培育基金资助项目(No.yxlw2013005)
关键词
IPV6网络安全
入侵检测系统
扩展首部
分段机制
IPv6 network security
intrusion detection system
extension header
segmented mechanism
