SDN架构下ARP攻击的解决方案及示例  

Solutions and examples of ARP attacks under SDN architecture

在线阅读下载全文

作  者:徐大伟 戴铖 祝烈煌[1] 厍怡婕 XU Da-wei;DAI Cheng;ZHU Lie-huang;SHE Yi-jie(School of Cyberspace Science and Technology,Beijing Institute of Technology,Beijing 100081,China;College of Cybersecurity,Changchun University,Changchun 130022,China)

机构地区:[1]北京理工大学网络空间安全学院,北京100081 [2]长春大学网络安全学院,吉林长春130022

出  处:《广州大学学报(自然科学版)》2021年第4期63-75,共13页Journal of Guangzhou University:Natural Science Edition

摘  要:网络上的安全一直是一个突出的问题,在本地网络中,ARP协议工作在较底层,安全性经常被忽略,并且容易受到黑客攻击。在新的网络架构SDN架构中,ARP攻击仍然是一个严重的网络安全问题,而且在这种网络架构中,不仅网络终端节点会暴露在攻击的风险下,控制器也容易遭受到攻击。因此,文章提出基于SDN架构的一种ARP攻击的解决方案。该方案通过在控制器中开发一个防御模块,在终端机中开发一个信息验证软件,利用控制器对网络信息的掌控,对要进行ARP通信的终端机进行验证,验证通过就代替目标终端机回复ARP应答报文,验证不通过就向管理员报告ARP攻击。实验表明,该方案能够有效防御各种形式的ARP攻击,有效地提高了局域网的安全性。Security of a network has always been a prominent issue.In a local network,the ARP protocol works at a lower level,and the security is often overlooked,and it is vulnerable to hacker attacks.In the new network SDN architecture,ARP attacks are still a serious network security problem,and in this network architecture,not only the network terminal nodes will be exposed to the risk of attacks,but also the controllers.Therefore,this article proposes an ARP attack solution based on the SDN architecture.This solution develops a defense module in the controller and an information verification software in the host,and uses the controller to control network information to verify the host that needs ARP communication.If the verification is passed,the target host will reply to the ARP response message instead of the target host.If the verification fails,the ARP attack will be reported to the administrator.Experiments show that the scheme can effectively defend against various forms of ARP attacks and effectively improve the security of a local area network.

关 键 词:ARP攻击 SDN架构 网络安全 控制器 

分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象