Man-in-the-middle Attack of ND and Its Countermeasures

doi:10.3969/j.issn.1000-3428.2006.11.068

Computer Engineering ›› 2006, Vol. 32 ›› Issue (11): 186-188. doi: 10.3969/j.issn.1000-3428.2006.11.068

• Network Security • Previous Articles Next Articles

Man-in-the-middle Attack of ND and Its Countermeasures

GUO Run;WANG Zhenxing;DUN Yanan

Information Engineering Department, Information Engineering University, PLA, Zhengzhou 450002

Received:1900-01-01 Revised:1900-01-01 Online:2006-06-05 Published:2006-06-05

基于ND的中间人攻击及其对策

郭润;王振兴;敦亚南

通讯作者: 郭润

Abstract

Abstract: Neighbor discovery protocol assumption of a fully trustworthy network contributes to its various security threats, this article analyzes ND protocol’s security threats and various methods of spoofing on-link nodes, which can lead to man-in-the-middle attack. It is proved that the design is available and feasible. It reduces the influence of attack.

Key words: IPv6, Neighbor discovery, Man-in-the-middle attack, Network security

摘要： 在分析邻居发现协议运行机制的基础上，指出了链路可信这个默认前提是导致ND(Neighbor Discovery)存在安全缺陷的根本原因，分析了利用ND安全缺陷对链路内的节点进行中间人攻击的方法，并对ND的安全防护进行阐述。测试结果表明，提出的方法是可行的、有效的，大大降低了攻击的影响。

关键词: IPv6, 邻居发现, 中间人攻击, 网络安全

CLC Number:

TP393.08

GUO Run;WANG Zhenxing;DUN Yanan. Man-in-the-middle Attack of ND and Its Countermeasures[J]. Computer Engineering, 2006, 32(11): 186-188.

郭润;王振兴;敦亚南. 基于ND的中间人攻击及其对策[J]. 计算机工程, 2006, 32(11): 186-188.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.3969/j.issn.1000-3428.2006.11.068

http://www.ecice06.com/EN/Y2006/V32/I11/186

[1]	Changhong YU, Ya LU, Haixin WANG, Ming GAO. Traffic Classification Algorithm for IoT Device Based on Sliding Time Window [J]. Computer Engineering, 2023, 49(7): 259-268.
[2]	CUI Jingyang, CHEN Zhenguo, TIAN Liqin, ZHANG Guanghua. Overview of User and Entity Behavior Analytics Technology Based on Machine Learning [J]. Computer Engineering, 2022, 48(2): 10-24.
[3]	SUN Pengyu, ZHANG Hengwei, TAN Jinglei, LI Chenwei, MA Junqiang, WANG Jindong. Network Security Defense Decision Method Based on Time Game [J]. Computer Engineering, 2022, 48(11): 145-151.
[4]	ZHOU Yimin, LIU Fangzheng, DU Zhenyu, ZHANG Kai. Analysis and Verification of IPSec VPN Security Vulnerability [J]. Computer Engineering, 2021, 47(6): 142-151.
[5]	NI Siyuan, HU Hongchao, LIU Wenyan, LIANG Hao. Heterogeneous Cloud Resource Allocation Algorithm Based on Rotation Strategy [J]. Computer Engineering, 2021, 47(6): 44-51,67.
[6]	YANG Yanli, SONG Lipeng. Attack Graph Generation Method Integrating Social Network Threats [J]. Computer Engineering, 2021, 47(5): 104-116.
[7]	WANG Zi, WANG Zhihua, HAN Yong, JIN Jianlong, HUANG Tianming, ZHU Jiang. Research on Mulit-Layer Cooperative Defense Model Oriented to Network Security of Power System [J]. Computer Engineering, 2021, 47(12): 131-140.
[8]	YANG Lin, WANG Yongjie. Network Defense Strategy Selection Method Based on Single-Point Multi-Step Game [J]. Computer Engineering, 2021, 47(1): 154-164.
[9]	HUANG Tinghui, DING Yong, LI Sijun. Research on MT6D-based Lightweight Security Protocol for Internet of Things [J]. Computer Engineering, 2020, 46(9): 117-122.
[10]	LI Yanli, WANG Xiaonan. Address Configuration Scheme for All-IP Vehicular Network Based on Hierarchical Mechanism [J]. Computer Engineering, 2020, 46(8): 160-163,171.
[11]	DING Huadong, XU Huahu, DUAN Ran, CHEN Fan. Network Security Situation Awareness Model Based on Bayesian Method [J]. Computer Engineering, 2020, 46(6): 130-135.
[12]	LI Li, SONG Song, LI Bingke. Weight Search and Alarm Selection Method Based on User Preference [J]. Computer Engineering, 2020, 46(4): 107-114.
[13]	SONG He, WANG Xiaofeng. LDDoS Emulation Method Based on Lightweight Virtualization [J]. Computer Engineering, 2020, 46(3): 105-113.
[14]	HU Qingshuang, LI Chenghai, LU Yanli, SONG Yafei. Network Security Situation Prediction Method Based on Hierarchically Optimized Belief Rule Base [J]. Computer Engineering, 2020, 46(12): 127-133.
[15]	DOU Zhengxiong, WANG Xiaonan. Cluster-based Address Configuration Scheme for All-IP Wireless Sensor Network [J]. Computer Engineering, 2019, 45(9): 60-64.

Please choose a citation manager

Content to export

Man-in-the-middle Attack of ND and Its Countermeasures

基于ND的中间人攻击及其对策

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments

模态框（Modal）标题

Please choose a citation manager

Content to export

Man-in-the-middle Attack of ND and Its Countermeasures

基于ND的中间人攻击及其对策

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments