%0 Journal Article
%T Intrusion detection mechanism for IPv6 routing extension header<br>针对IPv6路由扩展首部的入侵检测机制*
%A WANG Xiang-lin
%A LIU Li-peng
%A <br>王相林
%A 刘立朋
%J 计算机应用研究
%D 2012
%I 
%X Aiming at the security issues caused by holes of IPv6 routing extension header, this paper designed and implemented an intrusion detection mechanism applicable to IPv6 routing extension header. Basing on the open source intrusion detection system Snort, instead of changing the structure of the existing Snort detection rules, using the technology of IPv6 protocol analysis, improved the packet analysis module of Snort. It designed and implemented the module supporting for parsing IPv6 routing extension header and the internal protected system module. It also gave the process of the proving experiment and the analysis of result. The experiment proves that the design scheme in this paper can exactly detect the attack behaviors which use holes of IPv6 routing extension header.
%K IPv6
%K routing extension header
%K intrusion detection
%K Snort
%K protocol analysis<br>IPv6
%K 路由扩展首部
%K 入侵检测
%K Snort
%K 协议分析
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=4189763B19B8AD453F9D52044F8A38BE&yid=99E9153A83D4CB11&vid=771469D9D58C34FF&iid=CA4FD0336C81A37A&sid=3224764AEAFCF8C2&eid=86C0C9A759FDA8CA&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=0&reference_num=7