METHOD AND DEVICE FOR PREVENTING REPLAY ATTACK ON SRV6 HMAC CHECK

METHOD AND DEVICE FOR PREVENTING REPLAY ATTACK ON SRV6 HMAC CHECK

This application provides a method and an apparatus for preventing a replay attack on an SRv6 HMAC verification. The method includes: After receiving an SRv6 packet, a network device obtains anti-replay attack verification information carried in the packet, performs anti-replay attack verification b...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: GU, Rui, LU, Dongjie, WU, Di, ZHOU, Yu
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This application provides a method and an apparatus for preventing a replay attack on an SRv6 HMAC verification. The method includes: After receiving an SRv6 packet, a network device obtains anti-replay attack verification information carried in the packet, performs anti-replay attack verification based on the anti-replay attack verification information, and continues to perform HMAC hash computation on a packet that passes the verification, or discards a packet that fails the verification. When an attacker sends a large quantity of replay attack packets to the network device, this method effectively reduces hash computation performed when an HMAC verification is performed on the large quantity of replay attack packets in a conventional technology, saves computing resources of the device, and improves efficiency of processing a normal packet.