Cargando…
Novel Duplicate Address Detection with Hash Function
Duplicate address detection (DAD) is an important component of the address resolution protocol (ARP) and the neighbor discovery protocol (NDP). DAD determines whether an IP address is in conflict with other nodes. In traditional DAD, the target address to be detected is broadcast through the network...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Public Library of Science
2016
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4798648/ https://www.ncbi.nlm.nih.gov/pubmed/26991901 http://dx.doi.org/10.1371/journal.pone.0151612 |
| _version_ | 1782422194619416576 |
|---|---|
| author | Song, GuangJia Ji, ZhenZhou |
| author_facet | Song, GuangJia Ji, ZhenZhou |
| author_sort | Song, GuangJia |
| collection | PubMed |
| description | Duplicate address detection (DAD) is an important component of the address resolution protocol (ARP) and the neighbor discovery protocol (NDP). DAD determines whether an IP address is in conflict with other nodes. In traditional DAD, the target address to be detected is broadcast through the network, which provides convenience for malicious nodes to attack. A malicious node can send a spoofing reply to prevent the address configuration of a normal node, and thus, a denial-of-service attack is launched. This study proposes a hash method to hide the target address in DAD, which prevents an attack node from launching destination attacks. If the address of a normal node is identical to the detection address, then its hash value should be the same as the “Hash_64” field in the neighboring solicitation message. Consequently, DAD can be successfully completed. This process is called DAD-h. Simulation results indicate that address configuration using DAD-h has a considerably higher success rate when under attack compared with traditional DAD. Comparative analysis shows that DAD-h does not require third-party devices and considerable computing resources; it also provides a lightweight security resolution. |
| format | Online Article Text |
| id | pubmed-4798648 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2016 |
| publisher | Public Library of Science |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-47986482016-03-23 Novel Duplicate Address Detection with Hash Function Song, GuangJia Ji, ZhenZhou PLoS One Research Article Duplicate address detection (DAD) is an important component of the address resolution protocol (ARP) and the neighbor discovery protocol (NDP). DAD determines whether an IP address is in conflict with other nodes. In traditional DAD, the target address to be detected is broadcast through the network, which provides convenience for malicious nodes to attack. A malicious node can send a spoofing reply to prevent the address configuration of a normal node, and thus, a denial-of-service attack is launched. This study proposes a hash method to hide the target address in DAD, which prevents an attack node from launching destination attacks. If the address of a normal node is identical to the detection address, then its hash value should be the same as the “Hash_64” field in the neighboring solicitation message. Consequently, DAD can be successfully completed. This process is called DAD-h. Simulation results indicate that address configuration using DAD-h has a considerably higher success rate when under attack compared with traditional DAD. Comparative analysis shows that DAD-h does not require third-party devices and considerable computing resources; it also provides a lightweight security resolution. Public Library of Science 2016-03-18 /pmc/articles/PMC4798648/ /pubmed/26991901 http://dx.doi.org/10.1371/journal.pone.0151612 Text en © 2016 Song, Ji http://creativecommons.org/licenses/by/4.0/ This is an open access article distributed under the terms of the Creative Commons Attribution License (http://creativecommons.org/licenses/by/4.0/) , which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited. |
| spellingShingle | Research Article Song, GuangJia Ji, ZhenZhou Novel Duplicate Address Detection with Hash Function |
| title | Novel Duplicate Address Detection with Hash Function |
| title_full | Novel Duplicate Address Detection with Hash Function |
| title_fullStr | Novel Duplicate Address Detection with Hash Function |
| title_full_unstemmed | Novel Duplicate Address Detection with Hash Function |
| title_short | Novel Duplicate Address Detection with Hash Function |
| title_sort | novel duplicate address detection with hash function |
| topic | Research Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4798648/ https://www.ncbi.nlm.nih.gov/pubmed/26991901 http://dx.doi.org/10.1371/journal.pone.0151612 |
| work_keys_str_mv | AT songguangjia novelduplicateaddressdetectionwithhashfunction AT jizhenzhou novelduplicateaddressdetectionwithhashfunction |