On investigating ARP spoofing security solutions

Zouheir Trabelsi; Wassim El-Hajj

首页> 外文期刊>International journal of internet protocol technology >On investigating ARP spoofing security solutions

【24h】

On investigating ARP spoofing security solutions

机译：关于调查ARP欺骗安全解决方案

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

The address resolution protocol (ARP) has proven to work well under regular circumstances, but it was not designed to cope with malicious hosts. By performing ARP spoofing attacks, a malicious host can either impersonate another host [man-in-the-middle attack (MiM)] and gain access to sensitive information, or perform denial of service attack (DoS) on target hosts. Several security solutions, such as high-cost LAN switches and intrusion detection or prevention systems (IDS/IPS), are currently used to detect and prevent these attacks. In this paper, we evaluate, through extensive practical experiments, how effective these security solutions are in detecting ARP spoofing. We clearly show that ARP spoofing has not been given enough attention by most common security solutions which lack efficient detection and prevention mechanisms. We then propose an optimal algorithm that is capable of detecting all various ARP spoofing attacks; especially those not detected using the current mechanisms. The suggested algorithm can be easily integrated in any available security solution with very minimal overhead.

机译：事实证明，地址解析协议（ARP）在常规情况下可以很好地工作，但其目的并不是要应对恶意主机。通过执行ARP欺骗攻击，恶意主机可以冒充另一台主机[中间人攻击（MiM）]并获得对敏感信息的访问权，或者对目标主机执行拒绝服务攻击（DoS）。当前使用了几种安全解决方案，例如高成本的LAN交换机和入侵检测或防御系统（IDS / IPS），来检测和预防这些攻击。在本文中，我们通过广泛的实践实验评估了这些安全解决方案在检测ARP欺骗方面的有效性。我们清楚地表明，大多数常见的安全解决方案缺少有效的检测和预防机制，因此ARP欺骗并未得到足够的重视。然后，我们提出了一种能够检测所有各种ARP欺骗攻击的最佳算法。特别是那些使用当前机制未检测到的。可以将所建议的算法轻松集成到任何可用的安全解决方案中，而所需的开销却非常小。

著录项

来源
《International journal of internet protocol technology》 |2010年第2期|P.92-100|共9页
作者
Zouheir Trabelsi; Wassim El-Hajj;
展开▼
作者单位

Information Security Department, College of Information Technology, UAE University, P.O. Box 17551, Al-Ain, UAE;

Information Security Department, College of Information Technology, UAE University, P.O. Box 17551, Al-Ain, UAE;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
intrusion detection system; ARP spoofing; man-in-the-middle attack; MiM; denial of services attack; DoS;

机译：入侵侦测系统;ARP欺骗;中间人攻击;MiM;拒绝服务攻击;拒绝服务;

相似文献

外文文献
中文文献
专利

1. RTNSS: a routing trace-based network security system for preventing ARP spoofing attacks [J] . Moon Daesung, Lee Jae Dong, Jeong Young-Sik, Journal of supercomputing . 2016,第5期

机译：RTNSS：一种基于路由跟踪的网络安全系统，用于防止ARP欺骗攻击
2. An Active Defense Solution for ARP Spoofing in OpenFlow Network [J] . Xia Jing, Cai Zhiping, Hu Gang, Chinese Journal of Electronics . 2019,第1期

机译：开放流网络中ARP欺骗的主动防御解决方案
3. An Active Defense Solution for ARP Spoofing in OpenFlow Network? [J] . XIA Jing, CAI Zhiping, HU Gang, 中国电子杂志（英文版） . 2019,第001期

机译：一种用于OpenFlow网络中ARP欺骗的主动防御解决方案？
4. A security framework against ARP spoofing [C] . Saini Ravi Raj, Gupta Himanshu nternational Conference on Reliability, Infocom Technologies and Optimization . 2015

机译：防止ARP欺骗的安全框架
5. Assessing and Developing Two Educational Tools on ARP Spoofing Attacks [D] . Brown, Ariana. 2018

机译：评估和开发两种针对ARP欺骗攻击的教育工具
6. DS-ARP: A New Detection Scheme for ARP Spoofing Attacks Based on Routing Trace for Ubiquitous Environments [O] . Min Su Song, Jae Dong Lee, Young-Sik Jeong, -1

机译：DS-ARP：基于路由跟踪的ARP欺骗攻击的新检测方案
7. DS-ARP: A New Detection Scheme for ARP Spoofing Attacks Based on Routing Trace for Ubiquitous Environments [O] . Min Su Song, Jae Dong Lee, Young-Sik Jeong, 2014

机译：DS-ARP：基于无处不在环境的路由跟踪的ARP欺骗攻击新检测方案

On investigating ARP spoofing security solutions

摘要

著录项

相似文献

相关主题

期刊订阅