Title :
An Analysis on the Schemes for Detecting and Preventing ARP Cache Poisoning Attacks
Author :
Abad, Cristina L. ; Bonilla, Rafael I.
Author_Institution :
Escuela Super. Polytech. del Litoral, Guayaquil
Abstract :
The address resolution protocol (ARP) is used by computers to map network addresses (IP) to physical addresses (MAC). The protocol has proved to work well under regular circumstances, but it was not designed to cope with malicious hosts. By performing ARP cache poisoning or ARP spoofing attacks, an intruder can impersonate another host (man-in-the-middle attack) and gain access to sensitive information. Several schemes to mitigate, detect and prevent these attacks have been proposed, but each has its limitations. In this paper we analyze each of these schemes, identify their strengths and weaknesses, and propose guidelines for the design of an alternative and (arguably) better solution to the problem of ARP cache poisoning.
Keywords :
cache storage; local area networks; telecommunication security; transport protocols; ARP cache poisoning attack; address resolution protocol; local area network; spoofing attack; Access protocols; Broadcasting; Computer networks; Guidelines; Local area networks; Media Access Protocol; Operating systems; Performance gain; Physics computing; Unicast;
Conference_Titel :
Distributed Computing Systems Workshops, 2007. ICDCSW '07. 27th International Conference on
Conference_Location :
Toronto, Ont.
Print_ISBN :
0-7695-2838-4
Electronic_ISBN :
1545-0678
DOI :
10.1109/ICDCSW.2007.19
