Title :
A centralized detection and prevention technique against ARP poisoning
Author :
Kumar, Sumit ; Tapaswi, Shashikala
Author_Institution :
ABV-Indian Inst. of Inf. Technol. & Manage., Gwalior, India
Abstract :
The Man-in-the-Middle (MITM) attack on ARP is presently a common attack and nuisance to the typical LAN environment. This type of MITM is brought to effect by ARP cache poisoning which is achieved using forged ARP packets. ARP poisoning is a mechanism in which a node poisons ARP cache table of another node forcing it to send packets to a destination other than the intended one. This paper presents a feasible solution to the ARP cache poisoning, removing inconsistencies from all ARP tables of all hosts in the network. This paper uses a centralized system and ARP Central Server (ACS) to manage ARP table entries in all hosts. All hosts in the network uses the ACS to validate their ARP table entries. The ACS validates and corrects the poisoned ARP entries of the attacked hosts and hence prevents ARP poisoning in the network.
Keywords :
IP networks; telecommunication security; transport protocols; ARP cache poisoning; ARP cache table; ARP central server; ARP table entries; address resolution protocol; another node forcing; centralized detection; centralized system; man-in-the-middle attack; node poison; typical LAN environment; Complexity theory; IP networks; Local area networks; Logic gates; Protocols; Servers; Toxicology; ARP Central Server; ARP Poisoning; Address Resolution Protocol; MAC Address and Security; Man-in-the-Middle;
Conference_Titel :
Cyber Security, Cyber Warfare and Digital Forensic (CyberSec), 2012 International Conference on
Conference_Location :
Kuala Lumpur
Print_ISBN :
978-1-4673-1425-1
DOI :
10.1109/CyberSec.2012.6246087
