现代电子技术
現代電子技術
현대전자기술
MODERN ELECTRONICS TECHNIQUE
2015年
16期
133-137
,共5页
韩少聪%陈玉慧%刘嘉华%康睿
韓少聰%陳玉慧%劉嘉華%康睿
한소총%진옥혜%류가화%강예
ARP%主机接入%监测系统%非法主机阻断
ARP%主機接入%鑑測繫統%非法主機阻斷
ARP%주궤접입%감측계통%비법주궤조단
ARP%host connection%monitoring system%illegal host interdiction
针对企事业内部网络中存在的非法主机接入网络产生的安全问题,设计了一种基于ARP协议的非法主机接入监测系统.在该系统中,通过底层驱动阻断操作系统ARP的收发,构造具有签名的私有ARP实现主机接入的监视及非法接入主机的识别和网络通信阻断.实验结果表明,该系统可以感知并识别非法接入的设备,阻断非法设备的通信,并可识别非法构造的ARP主机.通过该系统可以快速、及时发现非法接入设备,降低非法设备的存活时间.
針對企事業內部網絡中存在的非法主機接入網絡產生的安全問題,設計瞭一種基于ARP協議的非法主機接入鑑測繫統.在該繫統中,通過底層驅動阻斷操作繫統ARP的收髮,構造具有籤名的私有ARP實現主機接入的鑑視及非法接入主機的識彆和網絡通信阻斷.實驗結果錶明,該繫統可以感知併識彆非法接入的設備,阻斷非法設備的通信,併可識彆非法構造的ARP主機.通過該繫統可以快速、及時髮現非法接入設備,降低非法設備的存活時間.
침대기사업내부망락중존재적비법주궤접입망락산생적안전문제,설계료일충기우ARP협의적비법주궤접입감측계통.재해계통중,통과저층구동조단조작계통ARP적수발,구조구유첨명적사유ARP실현주궤접입적감시급비법접입주궤적식별화망락통신조단.실험결과표명,해계통가이감지병식별비법접입적설비,조단비법설비적통신,병가식별비법구조적ARP주궤.통과해계통가이쾌속、급시발현비법접입설비,강저비법설비적존활시간.
An ARP-based monitoring system against illegal hosts connection was designed to solve the security problems caused by illegal hosts access to the internal network of enterprises. In this system,by means of the communication of ARP in bottom driven interdiction operating system,the privately-owned ARP with signature was constructed to achieve the purpose of monitoring the hosts access,recognizing and interdicting the illegal access hosts. The experiment result show that the system can perceived illegal host access and block its communication. Meanwhile,the ARP hosts with illegal signature can be recognized. The illegally-accessed hosts can be perceived immediately by this system,which can reduce the survival time of illegal equip-ments.
