Title :
Enhanced ARP: preventing ARP poisoning-based man-in-the-middle attacks
Author :
Nam, Seung Yeob ; Kim, Dongwon ; Kim, Jeongeun
Author_Institution :
Dept. of Inf. & Commun. Eng., Yeungnam Univ., Gyeongsan, South Korea
fDate :
2/1/2010 12:00:00 AM
Abstract :
In this letter, an enhanced version of Address Resolution Protocol (ARP) is proposed to prevent ARP poisoning-based Man-in-the-Middle (MITM) attacks. The proposed mechanism is based on the following concept. When a node knows the correct Media Access Control (MAC) address for a given IP address, if it retains the IP/MAC address mapping while that machine is alive, then MITM attack is impossible for that IP address. In order to prevent MITM attacks even for a new IP address, a voting-based resolution mechanism is proposed. The proposed scheme is backward compatible with existing ARP and incrementally deployable.
Keywords :
IP networks; access protocols; computer network security; IP address mapping; MAC address mapping; address resolution protocol poisoning; man-in-the-middle attacks; media access control; voting-based resolution mechanism; Access protocols; Computer crime; Cryptography; Ethernet networks; Hardware; Helium; Media Access Protocol; Mobile communication; Switches; Voting; ARP cache poisoning, man-in-the-middle attack, ARP poisoning prevention, voting;
Journal_Title :
Communications Letters, IEEE
DOI :
10.1109/LCOMM.2010.02.092108
