Title :
An ICMP based secondary cache approach for the detection and prevention of ARP poisoning
Author :
Tripathi, N. ; Mehtre, B.M.
Author_Institution :
Sch. of Comput. & Inf. Sci., Hyderabad Central Univ., Hyderabad, India
Abstract :
Address Resolution Protocol (ARP) poisoning is one of the most basic technique employed in computer hacking. ARP poisoning is used when a host is used to poison ARP cache of another host in order to send packets to some other destination than the intended one. This paper presents a feasible technique to detect and prevent the ARP poisoning by removing the multiple entries for the same MAC address or IP address from the ARP table using a secondary cache. This secondary cache contains the entries according to Internet Control Message Protocol (ICMP) responses. Since this technique prevents multiple entries for same IP address or MAC address, it also mitigates IP exhaustion problem. The secondary cache is maintained at every host which makes this technique distributed in nature, thereby prevents it from single point failure. Experimental results are also provided to support the proposal.
Keywords :
Internet; access protocols; cache storage; computer crime; ARP poisoning detection; ARP poisoning prevention; ARP table; ICMP; IP address; Internet control message protocol; MAC address; address resolution protocol; computer hacking; secondary cache approach; Computational intelligence; Computer crime; Conferences; IP networks; Logic gates; Protocols; Toxicology; ARP Poisoning; Address Resolution Protocol; Cyber Defense; ICMP; IP Exhaustion; Man-in-the-Middle; Network Security;
Conference_Titel :
Computational Intelligence and Computing Research (ICCIC), 2013 IEEE International Conference on
Conference_Location :
Enathi
Print_ISBN :
978-1-4799-1594-1
DOI :
10.1109/ICCIC.2013.6724172
