Preventing ARP attacks using a fuzzy-based stateful ARP cache

Zouheir Trabelsi; Wassim El-Hajj

doi:10.1109/ICC.2007.228

Preventing ARP attacks using a fuzzy-based stateful ARP cache

Zouheir Trabelsi, Wassim El-Hajj

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

15 Citations (Scopus)

Abstract

ARP cache poisoning is considered to be one of the easiest and dangerous attacks in local area networks. This paper proposes a solution to the ARP poisoning problem by extending the current ARP protocol implementation. Instead of the traditional stateless ARP cache, we use a stateful ARP cache in order to manage and secure the ARP cache. We also use a novel Fuzzy Logic approach to differentiate between normal and malicious ARP replies. The Fuzzy Logic controller uses a dynamically populated data base that adapts to network changes. The limits of the current approaches are discussed and analyzed.

Original language	English
Title of host publication	2007 IEEE International Conference on Communications, ICC'07
Pages	1355-1360
Number of pages	6
DOIs	https://doi.org/10.1109/ICC.2007.228
Publication status	Published - Dec 1 2007
Event	2007 IEEE International Conference on Communications, ICC'07 - Glasgow, Scotland, United Kingdom Duration: Jun 24 2007 → Jun 28 2007

Publication series

Name	IEEE International Conference on Communications
ISSN (Print)	0536-1486

Other

Other	2007 IEEE International Conference on Communications, ICC'07
Country/Territory	United Kingdom
City	Glasgow, Scotland
Period	6/24/07 → 6/28/07

Keywords

ARP cache poisoning
Cloning attack
Denial of Service (DoS) attack
Fuzzy logic
Man-in-the-Middle (MiM) attack
Stateful ARP cache

ASJC Scopus subject areas

Computer Networks and Communications
Electrical and Electronic Engineering

Access to Document

10.1109/ICC.2007.228

Cite this

Trabelsi, Z & El-Hajj, W 2007, Preventing ARP attacks using a fuzzy-based stateful ARP cache. in 2007 IEEE International Conference on Communications, ICC'07., 4288899, IEEE International Conference on Communications, pp. 1355-1360, 2007 IEEE International Conference on Communications, ICC'07, Glasgow, Scotland, United Kingdom, 6/24/07. https://doi.org/10.1109/ICC.2007.228

@inproceedings{f46b949a31894d22916c69d931d07116,

title = "Preventing ARP attacks using a fuzzy-based stateful ARP cache",

abstract = "ARP cache poisoning is considered to be one of the easiest and dangerous attacks in local area networks. This paper proposes a solution to the ARP poisoning problem by extending the current ARP protocol implementation. Instead of the traditional stateless ARP cache, we use a stateful ARP cache in order to manage and secure the ARP cache. We also use a novel Fuzzy Logic approach to differentiate between normal and malicious ARP replies. The Fuzzy Logic controller uses a dynamically populated data base that adapts to network changes. The limits of the current approaches are discussed and analyzed.",

keywords = "ARP cache poisoning, Cloning attack, Denial of Service (DoS) attack, Fuzzy logic, Man-in-the-Middle (MiM) attack, Stateful ARP cache",

author = "Zouheir Trabelsi and Wassim El-Hajj",

year = "2007",

month = dec,

day = "1",

doi = "10.1109/ICC.2007.228",

language = "English",

isbn = "1424403537",

series = "IEEE International Conference on Communications",

pages = "1355--1360",

booktitle = "2007 IEEE International Conference on Communications, ICC'07",

note = "2007 IEEE International Conference on Communications, ICC'07 ; Conference date: 24-06-2007 Through 28-06-2007",

}

TY - GEN

T1 - Preventing ARP attacks using a fuzzy-based stateful ARP cache

AU - Trabelsi, Zouheir

AU - El-Hajj, Wassim

PY - 2007/12/1

Y1 - 2007/12/1

N2 - ARP cache poisoning is considered to be one of the easiest and dangerous attacks in local area networks. This paper proposes a solution to the ARP poisoning problem by extending the current ARP protocol implementation. Instead of the traditional stateless ARP cache, we use a stateful ARP cache in order to manage and secure the ARP cache. We also use a novel Fuzzy Logic approach to differentiate between normal and malicious ARP replies. The Fuzzy Logic controller uses a dynamically populated data base that adapts to network changes. The limits of the current approaches are discussed and analyzed.

AB - ARP cache poisoning is considered to be one of the easiest and dangerous attacks in local area networks. This paper proposes a solution to the ARP poisoning problem by extending the current ARP protocol implementation. Instead of the traditional stateless ARP cache, we use a stateful ARP cache in order to manage and secure the ARP cache. We also use a novel Fuzzy Logic approach to differentiate between normal and malicious ARP replies. The Fuzzy Logic controller uses a dynamically populated data base that adapts to network changes. The limits of the current approaches are discussed and analyzed.

KW - ARP cache poisoning

KW - Cloning attack

KW - Denial of Service (DoS) attack

KW - Fuzzy logic

KW - Man-in-the-Middle (MiM) attack

KW - Stateful ARP cache

UR - http://www.scopus.com/inward/record.url?scp=38549181199&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=38549181199&partnerID=8YFLogxK

U2 - 10.1109/ICC.2007.228

DO - 10.1109/ICC.2007.228

M3 - Conference contribution

AN - SCOPUS:38549181199

SN - 1424403537

SN - 9781424403530

T3 - IEEE International Conference on Communications

SP - 1355

EP - 1360

BT - 2007 IEEE International Conference on Communications, ICC'07

T2 - 2007 IEEE International Conference on Communications, ICC'07

Y2 - 24 June 2007 through 28 June 2007

ER -

Preventing ARP attacks using a fuzzy-based stateful ARP cache

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this