摘要： 地址解析协议(ARP)是建立在友好通信、充分信任基础上的协议，因此，很容易受到攻击。该文介绍ARP协议工作机制、协议安全漏洞和当前已经提出的针对ARP欺骗的对策，并指出这些方法的不足之处。提出一种采用改进协议机制的方法用于防止ARP欺骗，该方法可以有效地减少利用ARP协议的网络欺骗攻击。

关键词: 地址解析协议, ARP欺骗, 协议改进

Abstract: The Address Resolution Protocol(ARP) is a protocol based on friendly communication and complete trust, so it is prone to be attacked. This paper introduces the working principle of ARP, and analyzes the security vulnerability of the existing ARP and related countermeasures. On this basis, a new method against ARP spoofing is proposed, which is based on improved protocol mechanism. The research shows the improved mechanism can reduce network spoofing attack using ARP effectively.

Key words: Address Resolution Protocol(ARP), ARP spoofing, protocol improvement

中图分类号: 

• TP311