摘要
通过分析ARP协议工作原理、ARP协议的运行机制、安全缺陷和攻击原理,以及各种ARP攻击手段,基于现有ARP欺骗攻击检测、防御方法的优缺点,从更加准确、安全的角度出发,借鉴现有防御技术,使用一种主体基于服务器客户端模式的防御体系。服务器主要进行通信信息的检验,并告知客户端检测结果,而客户端是防范欺骗的关键,保证域内主机与可信任主机通信,排除安全隐患。为了通信安全,实现端对端数据加密通信的ARP欺骗防御的思想,以准确高效地防范ARP欺骗的攻击。
By means of analyzing the working principle of the ARP,the ARP protocol operating mechanism,security vulnerabilities and principles of attacks,as well as a variety of ARP attack tricks,based on existing advantages and disadvantages of ARP spoofing attack detection and prevention methods,a ideology of ARP spoofing defense system is presented which is a mode of subject-based server and client,that using for reference existing defense technologies,from a more accurate and secure point of view.Server mainly carries out to test communicate information and inform the client the test results.The client is the key to prevent deception,to ensure communication with the trusted host which in the LAN,and to exclude security vulnerabilities.For communication security,end-to-end encryption of data communications to defense ARP spoofing attack can accurately and efficiently against ARP cheating.
出处
《计算机与现代化》
2010年第12期85-88,共4页
Computer and Modernization
