摘要
ARP协议主要实现了网络层地址到数据链路层地址的动态映射,并且ARP协议具有无序性、无确认性、动态性、无安全机制等特性。利用这些特性,攻击者可以较容易的实现在局域网内的ARP欺骗攻击,本文详细描述了利用ARP协议的特性进行欺骗攻击的原理和过程,包括主动攻击和被动攻击,表现形式有伪造ARP应答包和克隆主机。最后,提出了针对攻击可以采取的一些策略。
ARP protocol mainly implements dynamic mapping from network-layer's address to datalink-layer's address, however it has many characteristics like no sequence, no confirmation, dynamism, no safe mechanism .Therefore, attackers can easily cheat and attack in LAN by using ARP protocol.This text in detail describes the principle and the process of cheating and attacking by using ARP protocol, including active attack and passive attack. Finally, this text puts forward some measures to prevent the above cheat and attack.
作者
仇多利
QIU Duo-li (Department of Computer Science & Technology of HuaiBei Coal Industry Teachers College,Huaibei 235000,China)
出处
《电脑知识与技术》
2007年第9期1261-1261,1273,共2页
Computer Knowledge and Technology
