Abstract: DNS spoofing presents the characteristics of severe harm and high dormancy. By analyzing the principle of DNS ID spoofing attack and DNS cache poisoning attack, this paper proves the harm of “birthday attack” by using the probability theory, and puts forward some corresponding defense methods. In conclusion, to different kinds of users, they can use practical and effective defense measures according to their conditions and demand levels of information security.

Key words: DNS spoofing, ARP spoofing, DNS ID spoofing, DNS cache poisoning, birthday attack

摘要： 针对DNS欺骗表现出的危害性大、隐蔽性强的特点，通过对DNS ID欺骗攻击及DNS缓存中毒攻击的原理进行剖析，应用概率学理论证明了“生日攻击”的危害，分别给出相应的防御方案。对于不同类型的用户可以根据自身的条件和对信息安全要求级别的高低，采用适合自己的应对方案。

关键词: DNS欺骗, ARP欺骗, DNS ID 欺骗, DNS缓存中毒, 生日攻击

CLC Number: 

• TP393.08