ARP攻击和防范原理及示例

本科生毕业论文（设计）

题目：ARP攻击和防范原理及示例

专业：计算机网络（本科）

考生姓名：**********

准考证号：************

指导教师：******

二〇一五年十月

学术诚信声明

本人所呈交的毕业论文，是在导师的指导下，独立进行研究工作所

取得的成果，所有数据、图片资料均真实可靠。除文中已经注明引用的

内容外，本论文不包含任何其他人或集体已经发表或撰写过的作品或成

果。对本论文的研究作出重要贡献的个人和集体，均已在文中以明确的

方式标明。本毕业论文的知识产权归属于培养单位。本人完全意识到本

声明的法律结果由本人承担。

本人签名：日期：2015-10-12

摘要

ARP攻击是指攻击者利用ARP协议本身的缺陷，在区域内一台终端或服务器上发布欺骗ARP广播包以达到盗取用户帐号、篡改网站内容、嵌入恶意代码、发布不良信息、监听传输数据等非法活动的目的。

ARP的攻击方式是ARP欺骗，ARP欺骗在过去常被运用到简单的拒绝服务攻击中。然而，随着大量缺乏管理且流动性较大的网吧以及其他公共上网环境的普及，互联网上开始出现许多由ARP基本攻击与侦听、网页篡改等黑客技术相互结合的攻击方式。这种ARP攻击之所以能在各类公共上网设施内迅速蔓延是因为在拥有上千台机器的公众上网环境或对外服务的IDC托管机房中，同一网段中往往有来自不同单位或不同人群使用的各类终端与服务器，由于其中各类系统的安全责任点归属复杂、使用人员流动性大，造成环境内安全管理漏洞较多，从而使新一代以ARP欺骗为基础的网页挂码或重定向攻击得以滋生。

目前，很多研究者已经给出了针对ARP欺骗攻击的防治方法，在一定程度上减少了ARP问题的发生，这类方法主要是通过保护ARP高速缓存等方法来实现，它们不能从根本上解决ARP欺骗问题，因为ARP欺骗是利用ARP协议本身存在在的漏洞，本文将从技术层面入手，分析解决该类问题。

关键词：ARP攻击、ARP协议、ARP欺骗、ARP安全防护

Abstract

ARP attack is the use of the ARP protocol itself is a defect, in the region of a terminal or server to publish the ARP broadcast packet to steal user accounts, tampering with the site content, embedded malicious code, publish bad information, monitoring data and other illegal transfer of data.

ARP attack is ARP detection, the past is often used to be used in a simple denial of service attack. However, with a large number of Internet cafes and other public Internet access to a large number of lack of management, and other public Internet access to the Internet, many of the Internet began to appear on the basic attack and interception, web tampering and other hacking techniques, such as ARP. The ARP attack reason in all kinds of public Internet facilities spread quickly is because in possession of thousands of machines of the public Internet environment or external service IDC hosting room. In the same segment tend to have from different units or different groups of people use all kinds of terminal and server, due to the system of responsibility for the safety of the ownership of the complex, using personnel mobility, resulting in environment safety management loopholes more, so that a new generation of ARP deception based web hanging code or redirect attacks can be infested.

At present, many researchers have given the prevention and cure method for ARP deception attack. In a certain extent, it can reduce the occurrence of ARP. This method is mainly through the protection of ARP cache. They can not solve the problem of ARP. Because ARP is the use of ARP protocol, this paper will analyze and solve the problem.

Keywords: ARP attack, ARP protocol, ARP detection, ARP security