TY - GEN
T1 - An enhanced secure ARP protocol and LAN switch for preveting ARP based attacks
AU - Hammouda, Senda
AU - Trabelsi, Zouheir
PY - 2009
Y1 - 2009
N2 - After the ARP protocol was drafted, a subtle weakness in the protocol was discovered. In fact, ARP provides no means to establish the authenticity of the source of incoming ARP packets. That's why any host of a LAN network can forge an ARP message containing malicious information to poison the ARP caches of target hosts. This lack of authentication mechanisms has made ARP vulnerable to a raft of IP-based impersonation, Man-in-the-Middle (MiM) and DoS attacks. In this paper we discuss a security solution to solve the ARP vulnerabilities and authenticity issues. For that purpose, a novel secure extended ARP protocol is proposed. In addition, the LAN switch has been enhanced to assume the role of "Trusted Authority" and assure the hosts authentication while exchanging ARP messages.
AB - After the ARP protocol was drafted, a subtle weakness in the protocol was discovered. In fact, ARP provides no means to establish the authenticity of the source of incoming ARP packets. That's why any host of a LAN network can forge an ARP message containing malicious information to poison the ARP caches of target hosts. This lack of authentication mechanisms has made ARP vulnerable to a raft of IP-based impersonation, Man-in-the-Middle (MiM) and DoS attacks. In this paper we discuss a security solution to solve the ARP vulnerabilities and authenticity issues. For that purpose, a novel secure extended ARP protocol is proposed. In addition, the LAN switch has been enhanced to assume the role of "Trusted Authority" and assure the hosts authentication while exchanging ARP messages.
KW - ARP cache poisoning attack
KW - ARP protocol
KW - Man-in-the-middle attack
UR - http://www.scopus.com/inward/record.url?scp=70450265409&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=70450265409&partnerID=8YFLogxK
U2 - 10.1145/1582379.1582584
DO - 10.1145/1582379.1582584
M3 - Conference contribution
AN - SCOPUS:70450265409
SN - 9781605585697
T3 - Proceedings of the 2009 ACM International Wireless Communications and Mobile Computing, Connecting the World Wirelessly, IWCMC 2009
SP - 942
EP - 946
BT - Proceedings of the 2009 ACM International Wireless Communications and Mobile Computing Conference, IWCMC 2009
PB - Association for Computing Machinery (ACM)
T2 - 2009 ACM International Wireless Communications and Mobile Computing Conference, IWCMC 2009
Y2 - 21 June 2009 through 24 June 2009
ER -