CN103701825A - Security testing system oriented to mobile intelligent terminal IPv6 protocol and application of protocol - Google Patents
Security testing system oriented to mobile intelligent terminal IPv6 protocol and application of protocol Download PDFInfo
- Publication number
- CN103701825A CN103701825A CN201310754158.3A CN201310754158A CN103701825A CN 103701825 A CN103701825 A CN 103701825A CN 201310754158 A CN201310754158 A CN 201310754158A CN 103701825 A CN103701825 A CN 103701825A
- Authority
- CN
- China
- Prior art keywords
- test
- mobile terminal
- attack
- analog machine
- ipv6
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention provides a security testing system oriented to the mobile intelligent terminal IPv6 protocol and application of the protocol. The security testing system comprises an attacking end and mobile terminal simulation equipment, wherein the attacking end and the mobile terminal simulation equipment are connected through a mobile internet heterogeneous network based on the IPv6 protocol, and the attacking end is used for scanning ports of the mobile terminal simulation equipment; reading the IPv6 address of the mobile terminal simulation equipment, and receiving an NS message sent by the mobile terminal simulation equipment for performing man-in-the-middle attack testing on the mobile terminal simulation equipment; counterfeiting a server response terminal request packet and distributing disguised IP for performing DHCPv6 attack testing on the mobile terminal simulation equipment; counterfeiting a network packet, and adopting a multi-cast address to enlarge the flow rate for performing DoS attack testing on the mobile terminal simulation equipment; outputting a security testing result according to the man-in-the-middle attack testing, the DHCPv6 attack testing and the DoS attack testing. The security testing system can be used for performing security testing on the mobile intelligent terminal IPv6 protocol and the application of the protocol under the environment of the mobile internet hybrid heterogeneous network based on the IPv6 protocol.
Description
Technical field
The present invention relates to mobile terminal safety field tests, particularly relate to a kind of safety test system towards mobile intelligent terminal IPv6 agreement and application thereof.
Background technology
Along with the maturation of mobile intelligent terminal software and hardware technology and popularizing of application, mobile intelligent terminal number of users has obtained huge growth, deployment on mobile intelligent terminal and application IPv6 protocol stack have become development trend, the main flow intelligent movable operating system that comprises Android and apple iOS is embedded IPv4 and IPv6 protocol stack at present, and the hardware of mobile intelligent terminal is also supported IPv6 substantially.And the network environment of mobile Internet mixing isomery also makes IPv4 and the state of two kinds of communication protocols of IPv6 in coexisting, and certainly will on mobile intelligent terminal, cause a series of new safety problems, these safety problem parts derive from the security breaches of IPv4/IPv6 protocol stack itself and the safety defect of realization and deployment generation, and another part derives from IPv4/IPv6 and changes the mechanism.Simultaneously, due to characteristics such as mobile intelligent terminal are convenient, the mobile terminal application such as Mobile banking, mobile security, mobile e-business are progressively universal, and it may face again many new security threats at IPv6 net environment.
Aspect the network service of mobile intelligent terminal, IPv6 is because forcing to use ipsec protocol more safer than IPv4.But when on mobile intelligent terminal, reality is transplanted or disposes IPv6 protocol stack, because technical capability is not or because of terminal hardware resource-constrained, mobile intelligent terminal IPv6 protocol stack carries out a large amount of cuttings in the process of specific implementation, make IPv6 protocol stack in terminal operating system realize imperfect and produce security breaches, cause and support the network communication applications of IPv6 agreement to have potential safety hazard.
Increasing user carries out the operations such as stock exchange, banking, shopping online and online office by mobile intelligent terminal.The interactive application that this class has high security demand is not only higher to the security requirement of application software own, higher to the requirement of the Information Security in network service process.Along with the development of mobile terminal software and hardware technology and the popularization of WiFi/3G/LTE technology, mobile intelligent terminal has become the key factor that promotes China's mobile Internet business fast development, but the thing followed also highlights day by day for the safety problem of mobile intelligent terminal, to China's economy, social development has formed potential threat, national information security breaches shared platform has been announced the leak that iOS the next item up Apple TV IPv6 network by name is realized the automatic configuration feature user tracking of stateless address this year, allow long-range attack person to utilize leak to submit a large amount of cpu resources of particular request consumption systems to, cause Denial of Service attack.At present, still lack the Security Testing that authoritative Security Testing standard instructs mobile intelligent terminal IPv6 protocol stack and application thereof, the safety problem that does not also have specialty, effective automation Security Testing instrument to test mobile intelligent terminal IPv6 protocol stack and application thereof.
Prior art scheme one has proposed IPv6 network hole test macro, this system comprises network penetration test platform and IPv6 data packet analysis system, under IPv6 Network Experiment Environment, the various security breaches that exist for IPv6 network are carried out the substantive software architecture of attacking.The security breaches that malicious attacker analyzing IP v6 exists, construct various raw data packets and send packet to being attacked main frame, thereby make to be attacked main frame, cause information leakage, lost data packets or even cause attacking host computer system collapse.IPv6 data packet analysis system is that network user's usage data bag analysis tool is intercepted and captured IPv6 packet and analyzes.In the leak test macro of IPv6 network, structure, transmission, intercepting and capturing and analysis packet, realize the effective detection [3] to network hole.Network attack is Sampling network leak one of the most effective means, Hole Detection is carried out network attack test by simulating normally used network attack means to the network system of self, thereby find network hole and deficiency that IPv6 network self exists, and then make up network hole, improve the fail safe of IPv6 network system.
As Fig. 1, show a kind of testing scheme in conventional art:
In Fig. 1, test macro comprises network penetration test platform and IPv6 data packet analysis system.IPv6 network penetration test platform refers under IPv6 Network Experiment Environment, for the various security breaches of IPv6 existence, carries out the substantive software architecture of attacking; IPv6 network attack program is the security breaches that malicious attacker analyzing IP v6 exists, and constructs various packets and sends these packets to being attacked main frame, thereby make to be attacked main frame, causes information leakage, loses even system crash.
This scheme, by three subnet structure test environments, mainly for PC main frame, sends malicious attack packet and manually realizes IPv6 protocol security testing under cable network environment.Each subnet has PC main frame as by object of attack, wherein subnet 1 is provided with attack main frame, and as network penetration, promoter is attacked in test, and the Test Host in subnet 2 is as procotol security test person, mutual by between the network switch and data, reaches the effect of network protocol testing.
There is following shortcoming in this scheme:
This testing scheme is only confined to traditional PC pattern, and attack means is relative with testing equipment backward, fails to be applied to mobile intelligent terminal equipment.
This testing scheme is the cable network environment based on single, does not consider and under mobile Internet heterogeneous network architecture mode, realizes security protocol evaluation and test.
This testing scheme is manual test, can not complete automatic test, and test execution efficiency is lower, and human factor impact is larger, can not meet the security test of a large number of users, data in enormous quantities.
As Fig. 2, show the another kind of testing scheme in conventional art:
In Fig. 2, the attack tool based on IPv6 Neighbor Discovery Protocol (NDP) has been proposed.The security breaches that exist by analyzing NDP agreement, simulation, for the main Attack Scenarios of NDP agreement, has been developed attack tool on this basis, detects the leak defect of NDP agreement by this attack tool.This attack tool adopts traditional server/customer end constitution under local area network environment, and tester manually constructs false NA message, RA message and redirection message, inveigles by attack main frame and carries out wrong configuration, thereby realize attack intension.
Whole attack tool is comprised of following functional module: DoS attack module, address dummy prefix and parameter are attacked module, the unreachable detection of neighbours is attacked module, repeated address detection attack module, ARP spoofing attack module, malice final jump routing attack module and false redirection message and attacked module.
Concrete attack process is as follows:
Utilize network packet to catch formation and transmission that kit WinPcap realizes packet, by WinPcap, obtain the network interface card list of main frame; The list of recurrence network interface card selection will send the network interface card of packet; Open network card adapter and network interface card is made as to promiscuous mode; Utilize bag stuffing function and datagram to send construction of function and attack function, wherein, the main padding data link layer of bag stuffing function Ethernet, network layer IPv6 and upper-layer protocol, as ICMP agreement, Transmission Control Protocol etc.; Construct false NA message, RA message and redirection message and send packet to victim host, realizing network attack.
There is following shortcoming in this scheme:
This testing scheme is only realized network attack for IPv6 Neighbor Discovery Protocol, and the scope of test is less, and the security breaches threat category of detection is single.
This testing scheme is based on local area network, simulates single server end and client, does not consider the complex network that multi-user's multiserver builds, and can not realize the security test under mobile Internet mixing heterogeneous network pattern.
This testing scheme is manual test, can not complete automatic test, and test execution efficiency is lower, and human factor impact is larger, can not meet the security test of a large number of users, data in enormous quantities.
Summary of the invention
Based on this, the invention provides a kind of safety test system towards mobile intelligent terminal IPv6 agreement and application thereof, can under the mobile Internet mixing heterogeneous network environment based on IPv6, to mobile intelligent terminal, carry out safety test.
A safety test system towards mobile intelligent terminal IPv6 agreement and application thereof, comprising: attack end and mobile terminal analog machine, described attack end is connected by the mobile Internet heterogeneous network based on IPv6 agreement with described mobile terminal analog machine;
Described attack end is used for:
By the port of mobile terminal analog machine described in TCP tool scans;
According to the port of the described mobile terminal analog machine scanning, read the IPv6 address of described mobile terminal analog machine, receive the NS message that described mobile terminal analog machine sends, described mobile terminal analog machine is carried out to man-in-the-middle attack test;
Forge server response terminal request bag, distribute camouflage IP, described mobile terminal analog machine is carried out to DHCPv6 attack test;
Forge network packet, adopt multicast address amplified flow, described mobile terminal analog machine is carried out to DoS attack test;
According to described man-in-the-middle attack test, DHCPv6 attack test and DoS attack test, output safety test result.
The above-mentioned safety test system towards IPv6 agreement in mobile intelligent terminal and application thereof, by building the mobile Internet heterogeneous network in IPv6 agreement, mobile intelligent terminal adopts analog machine simulation, attack end and can comprehensively detect the exemplary secure defect occurring based in mobile intelligent terminal IPv6 protocol stack and application thereof, attack the leak occurring in mobile intelligent terminal IPv6 agreement and application, realize the automatic test of mobile intelligent terminal IPv6 agreement and application thereof.
Accompanying drawing explanation
Fig. 1 is the structural representation of a kind of safety test system in conventional art.
Fig. 2 is the structural representation of another kind of safety test system in conventional art.
Fig. 3 is the present invention towards the safety test system of mobile intelligent terminal IPv6 agreement and application thereof structural representation in one embodiment.
Fig. 4 is the present invention towards the safety test system of mobile intelligent terminal IPv6 agreement and application thereof network architecture diagram in one embodiment.
Fig. 5 attacks the test schematic diagram of end in Fig. 3.
Embodiment
Below in conjunction with embodiment and accompanying drawing, the present invention is described in further detail, but embodiments of the present invention are not limited to this.
As shown in Figure 3, the present invention towards the safety test system of mobile intelligent terminal IPv6 agreement and application thereof structural representation in one embodiment, comprise: attack end 31 and mobile terminal analog machine 32, described attack end 31 is connected by the mobile Internet heterogeneous network based on IPv6 agreement with described mobile terminal analog machine 32;
In a preferred embodiment, as shown in Figure 4, it is the network architecture diagram of the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof of the present embodiment, wherein, described attack end and mobile terminal analog machine can, by switch and wireless aps equipment connection, be built described mobile Internet heterogeneous network by described switch and wireless aps equipment; The cost of switch and wireless aps equipment is low, can build easily and fast the mobile Internet heterogeneous network based on IPv6 agreement.
In a preferred embodiment, described mobile terminal analog machine comprises interconnective wireless network card and computer, and described computer has been built mobile intelligent terminal operating system and IPv6 protocol stack; Because the hardware resource of mobile intelligent terminal equipment is limited, and computer is more stable at system bearing aspect of performance, is also convenient to deployment and the realization of IPv6 protocol stack.
As shown in Figure 5, described attack end is used for:
S51, by the port of mobile terminal analog machine described in TCP tool scans;
Open wireless AP equipment, mobile terminal analog machine is built WLAN by wireless aps equipment access Internet mode, in attack, end place opens TCP instrument, scanning mobile intelligent terminal port, determine the mobile intelligent terminal object that can attack evaluation and test, for next step attack is evaluated and tested ready.
The port of the described mobile terminal analog machine that S52, basis scan, the IPv6 address of reading described mobile terminal analog machine, receives the NS message that described mobile terminal analog machine sends, and described mobile terminal analog machine is carried out to man-in-the-middle attack test;
Further, described attack end also for:
Read the IPv6 address of described mobile terminal analog machine, intercept and capture the communication data of described mobile terminal analog machine, access in the WLAN (wireless local area network) of described mobile terminal analog machine and described wireless aps device build simultaneously;
After successful connection, by described WLAN, receive the NS message from described mobile terminal analog machine;
If successfully receive NS message, described mobile terminal analog machine is carried out to man-in-the-middle attack test;
In the present embodiment, the test of described man-in-the-middle attack comprises: go-between and described mobile terminal analog machine IP connecting test, ARP poisons and be redirected that test, Session Hijack are tested, DNS cheats test.
While starting man-in-the-middle attack test, attack end and read respectively mobile terminal analog machine IPv6 address, intercept and capture the communication data of mobile terminal analog machine, and access in the WLAN (wireless local area network) at mobile terminal analog machine and AP access point place, after successful connection, by network, receive the NS message from mobile terminal analog machine, to judge whether carry out network service between main frame, if successfully receive NS message, start man-in-the-middle attack, and carry out go-between and host ip connecting test by man-in-the-middle attack test module, data packet capturing is analyzed, realize that ARP poisons and be redirected test, Session Hijack test, DNS deception test waits man-in-the-middle attack test.
S53, forgery server response terminal request bag, distribute camouflage IP, and described mobile terminal analog machine is carried out to DHCPv6 attack test;
Further, described attack end also for:
When described mobile terminal analog machine being detected, with broadcast mode, to DHCPv6 server, send request when bag, forge described DHCPv6 server;
If forge successfully, replace DHCPv6 server to distribute camouflage IP to described mobile terminal analog machine, described mobile terminal analog machine is carried out to DHCPv6 attack test.
Described DHCPv6 attack test comprises forges server test, data packet capturing analytical test, the test of address dummy information distribution, the test of the false network information.
While starting DHCPv6 attack test, when mobile intelligent terminal sends request bag with broadcast mode to DHCPv6 server, attack end because of with mobile terminal analog machine in same local area network (LAN), and can be early than the request of DHCPv6 server response mobile terminal analog machine, forge server, if forge successfully, replace DHCPv6 server to distribute camouflage IP to mobile intelligent terminal, starting DHCPv6 attacks, and forge server test, data packet capturing analysis, realize the DHCPv6 attack tests such as the test of address dummy information distribution, the false network information.
S54, forgery network packet, adopt multicast address amplified flow, and described mobile terminal analog machine is carried out to DoS attack test;
Further, described attack end also for:
Read the IP address of described mobile terminal analog machine, by IP Packet Generation ICMP echo request data;
If described mobile terminal analog machine echogenicity response, carries out DoS attack test to described mobile terminal analog machine.
The test of described DoS attack comprises: forge network packet, by multicast address amplified flow collapse test, network congestion is tested.
While starting DoS attack test, attack end and first read victim's host IP address, by IP Packet Generation ICMP echo request data, if victim's echogenicity response, start DoS attack, attack test module is forged a large amount of network packet, by multicast address amplified flow, realizes the DoS attack tests such as mobile terminal analog machine collapse test, network congestion test.
S55, according to the test of described man-in-the-middle attack, DHCPv6 attack test and DoS attack test, output safety test result.
Because manufacturer terminal is in order to reduce research and development of software cost or because of terminal hardware resource-constrained, the specific implementation of mobile intelligent terminal IPv6 is carried out to a large amount of cuttings, make in terminal operating system IPv6 protocol stack realize imperfect and produce security breaches, cause and support the network communication applications of IPv6 agreement to have potential safety hazard, the present invention can be than more comprehensively detecting the exemplary secure defect occurring based in mobile intelligent terminal IPv6 protocol stack and application thereof, and test approaches comprises that mobile intelligent terminal TCP, man-in-the-middle attack, DHCPv6 attack and Denial of Service attack.
Because mobile intelligent terminal equipment causes a series of new safety problems in the IPv6 agreement meeting of realization mixing under heterogeneous network pattern, these safety problem parts are directed to changes the mechanism itself, another part is mutual in extraneous network environment of secondary source, the test environment of the present invention's structure is the mobile Internet heterogeneous network environment of mobile intelligent terminal equipment based on IPv6 agreement, intends carrying out Hole Detection for above-mentioned safety problem.This pattern had both been supported the test environment that traditional PC pattern is built, and supported the mixing heterogeneous network of being built by mobile intelligent terminal equipment simultaneously.
Seldom, the automated test tool of the IPv6 protocol security based on mobile intelligent terminal equipment under mobile Internet heterogeneous network environment not yet occurs at present available assessment IPv6 enforcement and the IPv6 testing tool of deployment secure.Existing measuring technology is all by the mode of tester's handwork, can not adapt to software automated testing demand, the present invention designs at a high speed the effectively security test tool framework structure of mobile intelligent terminal IPv6 agreement and application thereof, the safe test platform of development automation, realizes the fail safe of IPv6 agreement and application thereof under mobile Internet heterogeneous network environment pattern to mobile intelligent terminal equipment and assesses.
The present invention takes the mode of stimulated replacement, so that being installed, PC and the wireless network card of mobile intelligent terminal operating system and IPv6 protocol stack simulate mobile intelligent terminal, as the tested object of IPv6 agreement and application thereof, than more comprehensively detecting the exemplary secure defect occurring in based on the mobile intelligent terminal IPv6 protocol stack under mobile Internet mixing heterogeneous network environment and application thereof.
The present invention is by being transplanted to PC by the IPv6 agreement cutting that is applicable to mobile intelligent terminal platform, use switch, wireless aps and wireless network card to build the mobile Internet mixing heterogeneous network based on mobile intelligent terminal, carry out the security test of IPv6 agreement and application thereof;
The present invention proposes the automated test frame structure of mobile intelligent terminal IPv6 agreement and application thereof, move more repeatabilities and the manual test that cannot carry out, reduce interference from human factor, complete fast the test of mass data, realize at a high speed effectively the fail safe of IPv6 agreement and application thereof under mobile Internet mixing heterogeneous network environment to mobile intelligent terminal equipment and assess.
Current increasing user carries out the operations such as stock exchange, banking, shopping online and online office by mobile intelligent terminal.The interactive application that this class has high security demand is not only higher to the security requirement of application software own, higher to the requirement of the Information Security in network service process, the present invention contributes to the Security Testing standard establishing authority to instruct the Security Testing of mobile intelligent terminal IPv6 protocol stack and application thereof, the safety problem that simultaneously also contributes to exploitation specialty, effective automation Security Testing instrument to test mobile intelligent terminal IPv6 protocol stack and application thereof based on the present invention.
By building mobile intelligent terminal IPv6 agreement based on security protocol leak attack test and the evaluating system of application thereof, deployment secure protocol test Software tool, research safety evaluating method, realize mobile intelligent terminal IPv6 security protocol automatically, fast test, for improving the suggestion of providing advice of mobile intelligent terminal Network Communicate Security, be conducive to set up mobile intelligent terminal IPv6 security protocol evaluating standard, for mobile intelligent terminal and IPv6 application program manufacturer provide safety test technical support.In the method mobile intelligent terminal IPv6 safety protocol safe evaluation and test at home and abroad work, will have broad application prospects.
The above embodiment has only expressed several execution mode of the present invention, and it describes comparatively concrete and detailed, but can not therefore be interpreted as the restriction to the scope of the claims of the present invention.It should be pointed out that for the person of ordinary skill of the art, without departing from the inventive concept of the premise, can also make some distortion and improvement, these all belong to protection scope of the present invention.Therefore, the protection range of patent of the present invention should be as the criterion with claims.
Claims (9)
1. the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof, it is characterized in that, comprise: attack end and mobile terminal analog machine, described attack end is connected by the mobile Internet heterogeneous network based on IPv6 agreement with described mobile terminal analog machine;
Described attack end is used for:
By the port of mobile terminal analog machine described in TCP tool scans;
According to the port of the described mobile terminal analog machine scanning, read the IPv6 address of described mobile terminal analog machine, receive the NS message that described mobile terminal analog machine sends, described mobile terminal analog machine is carried out to man-in-the-middle attack test;
Forge server response terminal request bag, distribute camouflage IP, described mobile terminal analog machine is carried out to DHCPv6 attack test;
Forge network packet, adopt multicast address amplified flow, described mobile terminal analog machine is carried out to DoS attack test;
According to described man-in-the-middle attack test, DHCPv6 attack test and DoS attack test, output safety test result.
2. the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof according to claim 1, it is characterized in that, described attack end and mobile terminal analog machine, by switch and wireless aps equipment connection, are built described mobile Internet heterogeneous network by described switch and wireless aps equipment.
3. the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof according to claim 1, it is characterized in that, described mobile terminal analog machine comprises interconnective wireless network card and computer, and described computer has been built mobile intelligent terminal operating system and IPv6 protocol stack.
4. according to the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof described in claim 2 and 3, it is characterized in that, described attack end also for:
Read the IPv6 address of described mobile terminal analog machine, intercept and capture the communication data of described mobile terminal analog machine, access in the WLAN (wireless local area network) of described mobile terminal analog machine and described wireless aps equipment formation simultaneously;
After successful connection, by described WLAN, receive the NS message from described mobile terminal analog machine;
If successfully receive NS message, described mobile terminal analog machine is carried out to man-in-the-middle attack test.
5. according to the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof described in claim 2 and 3, it is characterized in that, described attack end also for:
When described mobile terminal analog machine being detected, with broadcast mode, to DHCPv6 server, send request when bag, forge described DHCPv6 server;
If forge successfully, replace DHCPv6 server to distribute camouflage IP to described mobile terminal analog machine, described mobile terminal analog machine is carried out to DHCPv6 attack test.
6. according to the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof described in claim 2 and 3, it is characterized in that, described attack end also for:
Read the IP address of described mobile terminal analog machine, by IP Packet Generation ICMP echo request data;
If described mobile terminal analog machine echogenicity response, carries out DoS attack test to described mobile terminal analog machine.
7. the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof according to claim 4, it is characterized in that, the test of described man-in-the-middle attack comprises: go-between and described mobile terminal analog machine IP connecting test, ARP poisons and be redirected that test, Session Hijack are tested, DNS cheats test.
8. the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof according to claim 5, it is characterized in that, described DHCPv6 attack test comprises forges server test, data packet capturing analytical test, the test of address dummy information distribution, the test of the false network information.
9. the safety test system towards mobile intelligent terminal IPv6 agreement and application thereof according to claim 6, it is characterized in that, the test of described DoS attack comprises: forge network packet, by multicast address amplified flow collapse test, network congestion is tested.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310754158.3A CN103701825A (en) | 2013-12-31 | 2013-12-31 | Security testing system oriented to mobile intelligent terminal IPv6 protocol and application of protocol |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310754158.3A CN103701825A (en) | 2013-12-31 | 2013-12-31 | Security testing system oriented to mobile intelligent terminal IPv6 protocol and application of protocol |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103701825A true CN103701825A (en) | 2014-04-02 |
Family
ID=50363221
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310754158.3A Pending CN103701825A (en) | 2013-12-31 | 2013-12-31 | Security testing system oriented to mobile intelligent terminal IPv6 protocol and application of protocol |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103701825A (en) |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104837150A (en) * | 2015-06-03 | 2015-08-12 | 重庆邮电大学 | Safety test system based on IPv6 wireless sensor network |
| CN106603348A (en) * | 2017-02-14 | 2017-04-26 | 上海斐讯数据通信技术有限公司 | DHCP Offer flooding simulation method and system |
| CN107133519A (en) * | 2017-05-15 | 2017-09-05 | 华中科技大学 | Privacy compromise detection method and system in a kind of Android application network communication |
| CN107172096A (en) * | 2017-07-06 | 2017-09-15 | 苏州蜗牛数字科技股份有限公司 | It is a kind of to prevent DNS from cutting the method held |
| CN107579862A (en) * | 2017-10-17 | 2018-01-12 | 北京安控科技股份有限公司 | A kind of method of measuring apparatus network communications capability |
| CN108282786A (en) * | 2018-04-13 | 2018-07-13 | 上海连尚网络科技有限公司 | A kind of method and apparatus for detecting DNS spoofing attacks in WLAN |
| CN109327465A (en) * | 2018-11-15 | 2019-02-12 | 珠海莲鸿科技有限公司 | A kind of method that safety resists network abduction |
| CN109561077A (en) * | 2018-11-08 | 2019-04-02 | 广西电网有限责任公司电力科学研究院 | Acquisition terminal communication security assessment method and device |
| CN109814061A (en) * | 2019-01-17 | 2019-05-28 | 广西电网有限责任公司电力科学研究院 | The information security reliability checking method and device of measuring terminal and intelligent electric meter |
| CN110536304A (en) * | 2019-08-08 | 2019-12-03 | 北京安为科技有限公司 | A kind of Internet of Things Network Communication attack test platform of Environment Oriented detection |
| CN110855698A (en) * | 2019-11-19 | 2020-02-28 | 成都知道创宇信息技术有限公司 | Terminal information obtaining method, device, server and storage medium |
| CN110932925A (en) * | 2019-10-31 | 2020-03-27 | 苏州浪潮智能科技有限公司 | Method and system for testing stability of server BMC (baseboard management controller) network |
| CN111092790A (en) * | 2019-12-19 | 2020-05-01 | 国网山东省电力公司泰安供电公司 | Power distribution terminal network stability testing method, system, terminal and storage medium |
| CN111669303A (en) * | 2020-06-08 | 2020-09-15 | 湖北阿桑奇汽车电子科技有限公司 | FOTA safety application process |
| CN112738032A (en) * | 2020-12-17 | 2021-04-30 | 公安部第三研究所 | Communication system for preventing IP deception |
| CN113595799A (en) * | 2021-08-03 | 2021-11-02 | 北京恒安嘉新安全技术有限公司 | Mobile network shooting range system and network flow attack simulation method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101043461A (en) * | 2007-04-24 | 2007-09-26 | 华为技术有限公司 | Method for testing DHCPv6 service and client |
| CN101136905A (en) * | 2006-08-31 | 2008-03-05 | 华为技术有限公司 | Binding update method in mobile IPv6 and mobile IPv6 communication system |
| US20100257359A1 (en) * | 2007-11-12 | 2010-10-07 | Mark Currie | Method of and apparatus for protecting private data entry within secure web sessions |
| US20110032870A1 (en) * | 2009-08-10 | 2011-02-10 | At&T Intellectual Property I, L.P. | Employing physical location geo-spatial co-ordinate of communication device as part of internet protocol |
-
2013
- 2013-12-31 CN CN201310754158.3A patent/CN103701825A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101136905A (en) * | 2006-08-31 | 2008-03-05 | 华为技术有限公司 | Binding update method in mobile IPv6 and mobile IPv6 communication system |
| CN101043461A (en) * | 2007-04-24 | 2007-09-26 | 华为技术有限公司 | Method for testing DHCPv6 service and client |
| US20100257359A1 (en) * | 2007-11-12 | 2010-10-07 | Mark Currie | Method of and apparatus for protecting private data entry within secure web sessions |
| US20110032870A1 (en) * | 2009-08-10 | 2011-02-10 | At&T Intellectual Property I, L.P. | Employing physical location geo-spatial co-ordinate of communication device as part of internet protocol |
Non-Patent Citations (2)
| Title |
|---|
| 张占锋: "基于渗透测试的IPv6网络脆弱性分析关键技术研究", 《中国优秀硕士学位论文全文数据库》 * |
| 黄裕庆: "移动IPv6安全性研究及测试系统的设计与实现", 《中国优秀硕士学位论文全文数据库》 * |
Cited By (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104837150B (en) * | 2015-06-03 | 2018-01-05 | 重庆邮电大学 | IPv6 wireless sense network safety test systems |
| CN104837150A (en) * | 2015-06-03 | 2015-08-12 | 重庆邮电大学 | Safety test system based on IPv6 wireless sensor network |
| CN106603348B (en) * | 2017-02-14 | 2019-10-11 | 上海斐讯数据通信技术有限公司 | A kind of method and system that simulation DHCP Offer floods |
| CN106603348A (en) * | 2017-02-14 | 2017-04-26 | 上海斐讯数据通信技术有限公司 | DHCP Offer flooding simulation method and system |
| CN107133519A (en) * | 2017-05-15 | 2017-09-05 | 华中科技大学 | Privacy compromise detection method and system in a kind of Android application network communication |
| CN107133519B (en) * | 2017-05-15 | 2019-07-05 | 华中科技大学 | Privacy compromise detection method and system in a kind of communication of Android application network |
| CN107172096A (en) * | 2017-07-06 | 2017-09-15 | 苏州蜗牛数字科技股份有限公司 | It is a kind of to prevent DNS from cutting the method held |
| CN107579862A (en) * | 2017-10-17 | 2018-01-12 | 北京安控科技股份有限公司 | A kind of method of measuring apparatus network communications capability |
| CN107579862B (en) * | 2017-10-17 | 2021-05-18 | 北京安控科技股份有限公司 | Method for measuring network communication capability of equipment |
| CN108282786A (en) * | 2018-04-13 | 2018-07-13 | 上海连尚网络科技有限公司 | A kind of method and apparatus for detecting DNS spoofing attacks in WLAN |
| CN108282786B (en) * | 2018-04-13 | 2020-10-16 | 上海连尚网络科技有限公司 | Method and equipment for detecting DNS spoofing attack in wireless local area network |
| CN109561077B (en) * | 2018-11-08 | 2021-01-12 | 广西电网有限责任公司电力科学研究院 | Acquisition terminal communication safety evaluation method and device |
| CN109561077A (en) * | 2018-11-08 | 2019-04-02 | 广西电网有限责任公司电力科学研究院 | Acquisition terminal communication security assessment method and device |
| CN109327465B (en) * | 2018-11-15 | 2021-11-05 | 珠海莲鸿科技有限公司 | Method for safely resisting network hijacking |
| CN109327465A (en) * | 2018-11-15 | 2019-02-12 | 珠海莲鸿科技有限公司 | A kind of method that safety resists network abduction |
| CN109814061B (en) * | 2019-01-17 | 2021-07-16 | 广西电网有限责任公司电力科学研究院 | Information safety reliability detection method and device for metering terminal and intelligent electric meter |
| CN109814061A (en) * | 2019-01-17 | 2019-05-28 | 广西电网有限责任公司电力科学研究院 | The information security reliability checking method and device of measuring terminal and intelligent electric meter |
| CN110536304A (en) * | 2019-08-08 | 2019-12-03 | 北京安为科技有限公司 | A kind of Internet of Things Network Communication attack test platform of Environment Oriented detection |
| CN110536304B (en) * | 2019-08-08 | 2023-02-21 | 北京安为科技有限公司 | Internet of things communication attack test platform for environment detection |
| CN110932925A (en) * | 2019-10-31 | 2020-03-27 | 苏州浪潮智能科技有限公司 | Method and system for testing stability of server BMC (baseboard management controller) network |
| CN110855698A (en) * | 2019-11-19 | 2020-02-28 | 成都知道创宇信息技术有限公司 | Terminal information obtaining method, device, server and storage medium |
| CN111092790A (en) * | 2019-12-19 | 2020-05-01 | 国网山东省电力公司泰安供电公司 | Power distribution terminal network stability testing method, system, terminal and storage medium |
| CN111669303A (en) * | 2020-06-08 | 2020-09-15 | 湖北阿桑奇汽车电子科技有限公司 | FOTA safety application process |
| CN112738032A (en) * | 2020-12-17 | 2021-04-30 | 公安部第三研究所 | Communication system for preventing IP deception |
| CN112738032B (en) * | 2020-12-17 | 2022-10-11 | 公安部第三研究所 | Communication system for preventing IP deception |
| CN113595799A (en) * | 2021-08-03 | 2021-11-02 | 北京恒安嘉新安全技术有限公司 | Mobile network shooting range system and network flow attack simulation method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103701825A (en) | Security testing system oriented to mobile intelligent terminal IPv6 protocol and application of protocol | |
| Han et al. | A timing-based scheme for rogue AP detection | |
| Ma et al. | A hybrid rogue access point protection framework for commodity Wi-Fi networks | |
| US7440434B2 (en) | Method and system for detecting wireless access devices operably coupled to computer local area networks and related methods | |
| US10873594B2 (en) | Test system and method for identifying security vulnerabilities of a device under test | |
| CN105450442B (en) | A kind of network topology investigation method and its system | |
| Beyah et al. | Rogue-access-point detection: Challenges, solutions, and future directions | |
| CN105227383B (en) | A kind of device of network topology investigation | |
| Sivanathan et al. | Can we classify an iot device using tcp port scan? | |
| US7971253B1 (en) | Method and system for detecting address rotation and related events in communication networks | |
| Xia et al. | An active defense solution for ARP spoofing in OpenFlow network | |
| CN101277231B (en) | Method and system for detecting wireless access points, switch and client terminal | |
| CN113422774B (en) | Automatic penetration testing method and device based on network protocol and storage medium | |
| CN103684912A (en) | Sensor network safety testing method and system | |
| Fayssal et al. | Anomaly-based behavior analysis of wireless network security | |
| Alotaibi et al. | An empirical fingerprint framework to detect rogue access points | |
| US8724506B2 (en) | Detecting double attachment between a wired network and at least one wireless network | |
| Alotaibi et al. | A passive fingerprint technique to detect fake access points | |
| Hafiz et al. | Profiling and mitigating brute force attack in home wireless LAN | |
| Susanto et al. | Simulation and analysis of network security performance using attack vector method for public wifi communication | |
| Zhu et al. | Scaffisd: a scalable framework for fine-grained identification and security detection of wireless routers | |
| CN109428862A (en) | A kind of method and apparatus detecting ARP attack in local area network | |
| Khan et al. | IPv6 security tools—A systematic review | |
| Goel et al. | Wireless Honeypot: Framework, Architectures and Tools. | |
| Budhrani et al. | Wireless Local Area Networks: Threats and Their Discovery Using WLANs Scanning Tools |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140402 |