Using a Fuzzy Logic controller to thwart Data Link layer attacks in ethernet networks

Wassim El-Hajj, Zouheir Trabelsi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

Nowadays data networks represent the most common communication environment for transfer of data, voice or image. Such popularity led network users to becoming more vulnerable to network attacks and intrusions. Data link layer attacks, ex. ARP poisoning, is considered to be one of these dangerous attacks. ARP poisoning attack is a technique used to attack an Ethernet network. It may allow an attacker to sniff network traffic or stop the traffic altogether. In this paper, we use a Fuzzy Logic controller to thwart Data Link layer attacks in ethernet networks (ARP poisoning). Each host in the network is assigned certain dynamic characteristics. Then a Fuzzy Logic controller is used to combine these characteristics keeping in mind the synergy between them. The output of the controller decides if the host is trusted or not. Moreover, we use a stateful ARP cache, instead of the traditional stateless ARP cache.

Original languageEnglish
Title of host publication2007 IEEE Wireless Communications and Networking Conference, WCNC 2007
Pages2549-2554
Number of pages6
DOIs
Publication statusPublished - 2007
Event2007 IEEE Wireless Communications and Networking Conference, WCNC 2007 - Kowloon, China
Duration: Mar 11 2007Mar 15 2007

Publication series

NameIEEE Wireless Communications and Networking Conference, WCNC
ISSN (Print)1525-3511

Other

Other2007 IEEE Wireless Communications and Networking Conference, WCNC 2007
Country/TerritoryChina
CityKowloon
Period3/11/073/15/07

Keywords

  • ARP cache poisoning
  • Data Link
  • Denial of Service (DoS)
  • Fuzzy Logic
  • Man-in-the-Middle (MiM)

ASJC Scopus subject areas

  • General Engineering

Fingerprint

Dive into the research topics of 'Using a Fuzzy Logic controller to thwart Data Link layer attacks in ethernet networks'. Together they form a unique fingerprint.

Cite this