-
1.发明授权Method for neutralizing the ARP spoofing attack by using counterfeit MAC addresses 有权使用伪造MAC地址中和ARP欺骗攻击的方法公开(公告)号:US08578488B2
公开(公告)日:2013-11-05
申请号:US13121809
申请日:2008-11-18
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
CPC分类号: H04L63/1466 , H04L29/12028 , H04L61/103
摘要: The present invention is related to a method for neutralizing a malicious ARP spoofing attack generated in a local network and in particular, the present invention provides a method for neutralizing an ARP spoofing attack comprising a step for detecting an ARP spoofing attack based on an ARP request packet generated for an ARP spoofing attack; a step for generating a plurality of counterfeit MAC addresses and dynamically changing MAC addresses of network devices or servers which are to be protected whenever an ARP spoofing attack is generated; and a step for neutralizing an ARP spoofing attack by using a counterfeit MAC address which is capable of neutralizing an ARP spoofing attack adequately.
摘要翻译: 本发明涉及一种中和本地网络中产生的恶意ARP欺骗攻击的方法,特别是本发明提供一种中和ARP欺骗攻击的方法,包括:基于ARP请求检测ARP欺骗攻击的步骤 为ARP欺骗攻击而生成的报文; 一旦生成ARP欺骗攻击就产生多个伪造MAC地址和动态地改变要被保护的网络设备或服务器的MAC地址的步骤; 以及通过使用能够充分中和ARP欺骗攻击的伪造MAC地址来中和ARP欺骗攻击的步骤。
-
2.发明申请METHOD FOR ALLOWING AND BLOCKING A USER PC WHICH CAN USE INTERNET AT THE SAME TIME IN A PRIVATE NETWORK THEROF A METHOD FOR ANALYZING AND DETECTING A JUDGEMENT ABOUT WHETHER NAT(NETWORK ADDRESS TRANSLATION) CAN BE USED OR NOT USING A TRAFFIC DATA, AND THE NUMBER OF TERMINALS SHARING NAT 有权允许和阻止可在其私有网络中在同一时间使用互联网的用户PC的方法一种用于分析和检测关于可以使用NAT(网络地址转换)或不使用交通数据和数字的判断的方法 终端共享NAT公开(公告)号:US20110185060A1
公开(公告)日:2011-07-28
申请号:US13121733
申请日:2008-10-28
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
IPC分类号: G06F15/173
CPC分类号: H04L63/0227 , H04L29/12367 , H04L61/2514
摘要: The present invention provides a method consisting of a step for analyzing a traffic receiving mirroring, a step for judging whether NAT (Network Address Translation) use of a client configuring and using a private network as well as a provided authorized IP (an Internet IP) is allowed or not, for analyzing and detecting the number of sharing terminals, a step for creating a database using data, and a step for formulating a policy by using information in database, so that when the users of a private network connect to Internet at the same time, permission or blocking of Internet use can be executed selectively.
摘要翻译: 本发明提供了一种方法,包括分析业务接收镜像的步骤,用于判断配置和使用专用网络的客户端的NAT(网络地址转换)使用以及所提供的授权IP(因特网IP)的步骤, 是否允许用于分析和检测共享终端的数量,使用数据创建数据库的步骤以及通过使用数据库中的信息来制定策略的步骤,使得当私有网络的用户以互联网方式连接到互联网时 同时,可以有选择地执行互联网使用的许可或阻止。
-
3.发明申请METHOD FOR NEUTRALIZING THE ARP SPOOFING ATTACK BY USING COUNTERFEIT MAC ADDRESSES 有权通过使用COUNTERFEIT MAC地址来中断ARP欺骗攻击的方法公开(公告)号:US20110179486A1
公开(公告)日:2011-07-21
申请号:US13121809
申请日:2008-11-18
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
IPC分类号: G06F21/20
CPC分类号: H04L63/1466 , H04L29/12028 , H04L61/103
摘要: The present invention is related to a method for neutralizing a malicious ARP spoofing attack generated in a local network and in particular, the present invention provides a method for neutralizing an ARP spoofing attack comprising a step for detecting an ARP spoofing attack based on an ARP request packet generated for an ARP spoofing attack; a step for generating a plurality of counterfeit MAC addresses and dynamically changing MAC addresses of network devices or servers which are to be protected whenever an ARP spoofing attack is generated; and a step for neutralizing an ARP spoofing attack by using a counterfeit MAC address which is capable of neutralizing an ARP spoofing attack adequately.
摘要翻译: 本发明涉及一种中和本地网络中产生的恶意ARP欺骗攻击的方法,特别是本发明提供一种中和ARP欺骗攻击的方法,包括:基于ARP请求检测ARP欺骗攻击的步骤 为ARP欺骗攻击而生成的报文; 一旦生成ARP欺骗攻击就产生多个伪造MAC地址和动态地改变要被保护的网络设备或服务器的MAC地址的步骤; 以及通过使用能够充分中和ARP欺骗攻击的伪造MAC地址来中和ARP欺骗攻击的步骤。
-
4.发明授权Method for allowing and blocking a user PC which can use internet at the same time in a private network thereof a method for analyzing and detecting a judgement about whether NAT(network address translation) can be used or not using a traffic data, and the number of terminals sharing NAT 有权允许和阻止可以在专用网络中同时使用因特网的用户PC的方法,用于分析和检测关于是否可以使用交通数据的NAT(网络地址转换)的判断的方法,以及数字 的终端共享NAT公开(公告)号:US08661133B2
公开(公告)日:2014-02-25
申请号:US13121733
申请日:2008-10-28
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
CPC分类号: H04L63/0227 , H04L29/12367 , H04L61/2514
摘要: The present invention provides according to an embodiment a method including analyzing traffic; judging whether NAT (Network Address Translation) use of a client configuring and using a private network as well as a being provided an authorized IP address (an Internet IP address) is allowed or not, for analyzing and detecting a number of sharing terminals; creating a database using data; and formulating a policy by using information in the database, so that when users of the private network connect to the Internet at the same time, permission or blocking of Internet use can be executed selectively.
摘要翻译: 本发明根据实施例提供了一种分析业务的方法; 判断NAT(网络地址转换)是否使用配置和使用专用网络的客户端以及被提供的授权IP地址(互联网IP地址),用于分析和检测多个共享终端; 使用数据创建数据库; 并且通过使用数据库中的信息来制定策略,使得当专用网络的用户同时连接到因特网时,可以选择性地执行对互联网使用的许可或阻止。
-
-
-
搜索结果
4 条记录 (耗时 0.011 秒)
