资源描述:
《本科毕业论文-网络安全方面》由会员上传分享,免费在线阅读,更多相关内容在学术论文-天天文库。
1、摘要网络的迅速发展,给人类生活带来方便,但也对网络安全提出了更高要求。需对网络协议进一步分析,才能够更加有效的安全的应用网络协议。ARP协议是TCP/IP协议中重要的一员,其功能主要是为局域网内网络设备提供IP地址向硬件地址(MAC地址)的转化,其设计建立在局域网内网络设备之间相互信任的基础上,对于不可信任的设备未加考虑,由此产生了许多ARP欺骗攻击方法。本文以ARP协议为基本原理,以防御ARP欺骗、提高网络安全为目的。首先,在对TCP/IP参考模型、ARP协议等相关理论学习的基础上,重点分析了ARP协议的运行机制,包括ARP缓
2、存、ARP帧格式、ARP请求和应答的运行过程等。其次,分析了ARP欺骗原理,ARP欺骗就是通过向目标主机发送一个伪造的包含IP-MAC映射信息的ARP应答报文实现的。最后,根据Windows系统在更新ARP缓存中IP地址和MAC地址映射信息时不检验更新内容可靠性的特点,提出了一种基于服务器客户端的ARP欺骗防御模型,以达到局域网中实现各主机防御ARP欺骗的目的。本软件使用VisualC++6.0作为开发工具,采用Winpcap(WindowsPacketCapture)进行网络监视,来实现各种功能要求。关键词:ARP欺骗攻击;V
3、isualC++6.0;监控;Protect;服务器;客户端AbstractTherapiddevelopmentofthenetwork,tohumanlife,butalsobringconveniencetonetworksecurityraisedtallerrequirement.Theneedforfurtheranalysisofnetworkprotocols,itcanbemoreeffectiveapplicationofsecurityprotocols.ARPprotocolisTCP/IPprotoco
4、lanimportantone,anditsmainfunctionistoprovidenetworkequipmentfortheLANIPaddresstohardwareaddress(MACaddress)oftheconversion,itsdesignbasedonthelocalareanetworkequipmentbasedonmutualtrustbetweentheFornon-trusteddeviceisnotconsidered,solotsofARPspoofingattackmethod.Int
5、hispaper,thebasicprincipleofARPprotocoltoguardagainstARPcheating,improvenetworksecuritypurposes.Firstofall,intheTCP/IPreferencemodel,ARPprotocolandotherrelatedtheoreticalstudy,basedonARPprotocolanalyzedtheoperationofmechanisms,includingARPcache,ARPframeformat,ARPrequ
6、estandresponseoperationprocesses.Secondly,theanalysisoftheprincipleofARPdeception,ARPdeceptionisthroughtothetargethosttosendafakeIP-MACmappingcontainsinformationonARPresponsepackettoachieve.Finally,underWindowssystemARPcacheupdatingtheIPaddressandMACaddressmappinginf
7、ormationwhentheupdatedoesnottestthereliabilityofthecharacteristicsofNeirong,aserver-basedclientARPdeceptiondefensemodelinordertoachieveLANARPcheatingachievementofthehostdefensepurposes.ThesoftwareusestheVisualC++6.0asdevelopmenttools,usingWinpcap(WindowsPacketCapture
8、)fornetworkmonitoring,toachieveavarietyoffunctionalrequirements.Keywords:ARPattack;VisualC++6.0;Monitor;Protect;Server;Client目录第一章概