摘要
针对ARP的工作机制,深入分析了ARP欺骗产生的原因,在此基础上提出通过加入控制代码的方法,完善ARP协议对来自同一局域网中的ARP应答不进行验证的缺陷,把网络安全关系建立在IP+MAC基础上,而不是单独建立在IP地址上或MAC地址上.这样以来,既保证了局域网内信息的安全性和机密性,又保证了网络的灵活性,对实际应用有一定的参考价值.
Based on the working mechanism of ARP, an in - depth analysis has been given of the causes of ARP spoofing. A controlling code is added to perfect ARP, the defect of which was a failure to verify ARP respondent within the same local area network( LAN}. When the Network security relations are built on the basis of IP + MAC rather than on an IP address or MAC address alone, the informationsecurity and confidentiality within LAN as well as the flexi- bility can be guaranteed. The study is of reference value for application.
出处
《西安文理学院学报(自然科学版)》
2012年第4期84-86,共3页
Journal of Xi’an University(Natural Science Edition)
基金
西安文理学院科研基金资助项目(2010A206)
