Preventing ARP attacks using a fuzzy-based stateful ARP cache

Zouheir Trabelsi, Wassim El-Hajj

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    15 Citations (Scopus)

    Abstract

    ARP cache poisoning is considered to be one of the easiest and dangerous attacks in local area networks. This paper proposes a solution to the ARP poisoning problem by extending the current ARP protocol implementation. Instead of the traditional stateless ARP cache, we use a stateful ARP cache in order to manage and secure the ARP cache. We also use a novel Fuzzy Logic approach to differentiate between normal and malicious ARP replies. The Fuzzy Logic controller uses a dynamically populated data base that adapts to network changes. The limits of the current approaches are discussed and analyzed.

    Original languageEnglish
    Title of host publication2007 IEEE International Conference on Communications, ICC'07
    Pages1355-1360
    Number of pages6
    DOIs
    Publication statusPublished - Dec 1 2007
    Event2007 IEEE International Conference on Communications, ICC'07 - Glasgow, Scotland, United Kingdom
    Duration: Jun 24 2007Jun 28 2007

    Publication series

    NameIEEE International Conference on Communications
    ISSN (Print)0536-1486

    Other

    Other2007 IEEE International Conference on Communications, ICC'07
    Country/TerritoryUnited Kingdom
    CityGlasgow, Scotland
    Period6/24/076/28/07

    Keywords

    • ARP cache poisoning
    • Cloning attack
    • Denial of Service (DoS) attack
    • Fuzzy logic
    • Man-in-the-Middle (MiM) attack
    • Stateful ARP cache

    ASJC Scopus subject areas

    • Computer Networks and Communications
    • Electrical and Electronic Engineering

    Fingerprint

    Dive into the research topics of 'Preventing ARP attacks using a fuzzy-based stateful ARP cache'. Together they form a unique fingerprint.

    Cite this