摘要
ARP协议主要实现了网络层地址到数据链路层地址的动态映射,由于ARP协议具有无序性、无确认性、动态性、无安全机制等特性,ARP欺骗攻击成了局域网中一种常见的攻击现象。在深入研究ICMP重新定向原理的基础上,通过一个实例解释了跨网段ARP欺骗原理和具体实现过程,并给出了具体的检测与防范方法。
ARP protocol mainly implements dynamic mapping from network-layer's address to datalink-layer's address.However,it has many characteristics like no sequence,no confirmation,dynamism,no safe mechanism.ARP spoofing attack has become a common phenomenon attacks in LAN.This paper studied the principle of ICMP redirection,explained inter-network segment ARP spoofing principle and the realization process,and gave the specific method of detection and prevention.
出处
《微型机与应用》
2010年第21期69-71,75,共4页
Microcomputer & Its Applications
