中图分类号：TP309文献标识码：ADOI:10.19358/j.issn.2097-1788.2024.06.004
引用格式：王斌，李琪，张宇，等.一种多机制融合的可信网络探测认证技术［J］.网络安全与数据治理，2024，43（6）：23-32.

An authentication scheme for trusted network probing based on multiple mechanisms integrating

Abstract： To ensure the security of network topology information while maintaining the network′s flexibility and tunability, this paper introduced an authentication technology for trusted network probing that integrates multiple mechanisms. This technology combines trusted authentication based on IP addresses, token-based authentication, and hash chain-based authentication, balancing efficiency and security. Through this method, network administrators can protect network topology information without blocking legitimate topology probing. A topology probing tool supporting this technology was developed, and the technique was implemented on Linux hosts using Netfilter technology. Experimental results demonstrated that this technology can effectively identify trusted probes, with a slight increase in latency compared to traditional Traceroute.

Key words : trusted probe authentication; hash chain; network topology; Traceroute