Preventing Denial of Service Attacks on Address Resolution in IPv6 Link-local Network: AR-match Security Technique

机译：防止拒绝拒绝服务攻击IPv6链路 - 本地网络中的地址分辨率：AR-匹配安全技术

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Address resolution (AR) process, one of the important neighbor discovery protocol (NDP) functions, aims to obtain the corresponding relationship between Internet protocol and media access control addresses. This process uses two NDP messages, neighbor solicitation (NS) and neighbor advertisement (NA) messages, which are unsecure by design. In addition, the target address is revealed in the traditional AR process. Thus, any malicious node on the same link can modify the message and launch denial of service (DoS) attacks. The current mechanisms suffer from high-complexity issue or other forms of security issues that can induce DoS attack on AR in IPv6 link-local network. To overcome these limitations, this work proposes AR-match technique to secure AR process by hiding the target address by using a hash function algorithm and adding a new option named AR-match, which is attached to each NS and NA message for them to become NS- and NA-match messages, respectively. AR-match technique can provide a high security with less complexity and will completely prevent DoS attacks during AR in the IPv6 link-local network.

机译：地址解析（AR）进程是重要的邻居发现协议（NDP）函数之一，旨在获得因特网协议和媒体访问控制地址之间的相应关系。此过程使用两个NDP消息，邻居征集（NS）和邻居广告（NA）消息，这些消息由设计不安全。此外，在传统的AR过程中揭示了目标地址。因此，同一链路上的任何恶意节点都可以修改消息并启动拒绝服务（DOS）攻击。当前机制患有高复杂性问题或其他形式的安全问题，可以在IPv6链路 - 本地网络中诱导DOS攻击。为了克服这些限制，这项工作提出了通过使用哈希函数算法隐藏目标地址并添加名为AR-匹配的新选项来保护AR匹配技术，并将其附加到每个NS和NA消息，以使其成为它们分别为NS-和NA-Match消息。 AR-匹配技术可以提供高安全性，复杂性较差，并且在IPv6链路本地网络中的AR期间将完全防止DOS攻击。

著录项

来源
《International conference on omputational science and technology》|2019年|xii 583 p.|共10页
会议地点
作者
Ahmed K. Al-Ani; Mohammed Anbar; Selvakumar Manickam; Ayman Al-Ani; Yu-Beng Leau;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类计算技术、计算机技术;
关键词
Address Resolution; Neighbor Discovery Protocol; IPv6 Link-local Network; Network Security;

机译：地址解析;邻居发现协议;IPv6链接本地网络;网络安全;
入库时间 2022-08-20 23:58:11

相似文献

外文文献
中文文献
专利

1. Match-Prevention Technique Against Denial-of-Service Attack on Address Resolution and Duplicate Address Detection Processes in IPv6 Link-Local Network [J] . Al-Ani Ahmed K., Anbar Mohammed, Al-Ani Ayman, Quality Control, Transactions . 2020,第期

机译：匹配预防技术免受拒绝服务攻击的关于地址解析和重复地址检测过程IPv6链路本地网络
2. DAD-Match: Technique to Prevent DoS Attack on Duplicate Address Detection Process in IPv6 Link-local Network [J] . Ahmed K. Al-Ani, Mohammed Anbar, Selvakumar Manickam, Journal of Communications . 2018,第6期

机译：DAD-Match：在IPv6链路本地网络中防止DoS攻击重复地址检测过程的技术
3. A new security model to prevent denial-of-service attacks and violation of availability in wireless networks [J] . Mina Malekzadeh, Abdul Azim Abdul Ghani, Shamala Subramaniam International journal of communication systems . 2012,第7期

机译：一种新的安全模型，可防止拒绝服务攻击和无线网络中的可用性破坏
4. Preventing Denial of Service Attacks on Address Resolution in IPv6 Link-local Network: AR-match Security Technique [C] . Ahmed K. Al-Ani, Mohammed Anbar, Selvakumar Manickam, International conference on omputational science and technology . 2019

机译：防止拒绝拒绝服务攻击IPv6链路 - 本地网络中的地址分辨率：AR-匹配安全技术
5. Mitigation of Denial of Service Attacks in Software Defined Network =MITIGATION OF DENIAL OF SERVICE ATTACKS IN SOFTWARE DEFINED NETWORK [D] . Dridi, Lobna. 2017

机译：软件定义网络中的拒绝服务攻击的缓解=软件定义网络中的拒绝服务攻击的缓解
6. DAD-match; Security technique to prevent denial of service attack on duplicate address detection process in IPv6 link-local network [O] . Ahmed K. Al-Ani, Mohammed Anbar, Selvakumar Manickam, 2012

机译：DAD匹配；在IPv6链路本地网络中防止对重复地址检测过程进行拒绝服务攻击的安全技术
7. DAD-match; Security technique to prevent denial of service attack on duplicate address detection process in IPv6 link-local network [O] . Ahmed K. Al-Ani, Mohammed Anbar, Selvakumar Manickam, 2019

机译：爸爸比赛;安全技术防止拒绝服务攻击在IPv6链路本地网络中的重复地址检测过程

Preventing Denial of Service Attacks on Address Resolution in IPv6 Link-local Network: AR-match Security Technique

摘要

著录项

相似文献

相关主题

期刊订阅