Interactive method for address resolution protocol

A technology of address resolution protocol and interaction method, which is applied in the field of address resolution protocol interaction, can solve the problems of being stolen, client PCARP spoofing attack, shared key is easy to lose, etc., and achieves the effect of preventing ARP attack

Active Publication Date: 2012-07-25
HILLSTONE NETWORKS CO LTD
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

If you need to change the IP of the host or gateway, you must change the binding on all PCs, which will cause a lot of work for the administrator
[0004] During the ARP interaction process, because the ARP protocol itself does not authenticate the two sides of the interaction, the client PC is vulnerable to ARP spoofing attacks
[0005] Some solutions in the existing technology must require all terminals to implement the ARP protocol for authentication. Once there are routers, switches and other devices that cannot support it in the network, the entire solution will be difficult to deploy.
[0006] In the prior art, it is also possible to use the shared key to authenticate each other, but there is a disadvantage that in the case of many clients, the shared key is easy to be lost or stolen, so that the attacker can forge the authentication ARP message

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Interactive method for address resolution protocol
  • Interactive method for address resolution protocol
  • Interactive method for address resolution protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] The preferred embodiments of the present invention will be described below in conjunction with the accompanying drawings. It should be understood that the preferred embodiments described here are only used to illustrate and explain the present invention, and are not intended to limit the present invention.

[0027] figure 1 is a flowchart of the method according to the invention.

[0028] Such as figure 1 As shown, the method includes the following steps:

[0029] S102, generating a public key and a private key of the device, and enabling all clients under the device to obtain the public key of the device;

[0030] S104. When the device receives the address resolution protocol request message from the client, the device uses a signature algorithm to perform a private key signature on the address resolution protocol packet to be sent, and uses the generated signature and the address resolution protocol packet to be sent as an address resolution A protocol reply messag...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an interactive method for an address resolution protocol. The method comprises the following steps of: 1, a public key and a private key of the equipment are generated and all clients under the equipment obtain the public key of the equipment; 2, when receiving an address resolution protocol request message from the client, the equipment completes the private key signature of the address resolution protocol packet needing to be transferred by using the signature algorithm and transmits the generated signature and the transferred address resolution protocol packet to theclient as an address resolution protocol answer message; and 3, after receiving the address resolution protocol answer message from the equipment, the client determines whether to refresh the addressresolution protocol buffer memory in the client according to the state of the answer message. Therefore, the method can completely prevent ARP spoofing on the equipment supporting the authentication of the ARP under a condition of being compatible with the prior equipment.

Description

technical field [0001] The present invention relates to network security, and more specifically, relates to an address resolution protocol interaction method. Background technique [0002] Ethernet is a broadcasting environment, Address Resolution Protocol (ARP, Address Resolution Protocol) is a protocol on Ethernet that utilizes the IP address of a host to determine its physical address. There is no security mechanism for ARP addresses. Attackers can use counterfeit ARP packets to answer ARP requests, or even actively send counterfeit gratuitous ARP packets, so that the host caches wrong ARP information. Such hosts will send IP packets to illegal MAC addresses, and attackers can achieve the purpose of man-in-the-middle attacks or denial-of-service attacks. [0003] IP and MAC binding tables can be used on network devices to prevent ARP tampering. Static binding is also required on the PC. If you need to change the IP of the host or gateway, you must change the bindings ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/08H04L29/06
Inventor 许涛
Owner HILLSTONE NETWORKS CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap