TARP: ticket-based address resolution protocol

Author

Lootah, Wesam ; Enck, William ; McDaniel, Patrick

Author_Institution

Dept. of Comput. Sci. & Eng., Pennsylvania State Univ., University Park, PA

fYear

2005

fDate

5-9 Dec. 2005

Lastpage

116

Abstract

IP networks fundamentally rely on the address resolution protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation, man-in-the-middle, or DoS attacks. Proposed countermeasures to these vulnerabilities have yet to simultaneously address backward compatibility and cost requirements. This paper introduces the ticket-based address resolution protocol (TARP). TARP implements security by distributing centrally issued secure MAC/IP address mapping attestations through existing ARP messages. We detail the TARP protocol and its implementation within the Linux operating system. Our experimental analysis shows that TARP improves the costs of implementing ARP security by as much as two orders of magnitude over existing protocols. We conclude by exploring a range of operational issues associated with deploying and administering ARP security

Keywords

IP networks; Linux; access protocols; security of data; telecommunication security; IP address mapping; IP impersonation; IP network; Linux operating system; MAC address; denial of service; medium access protocol; ticket-based address resolution protocol; Computer science; Computer security; Costs; Data security; IP networks; Laboratories; Linux; Operating systems; Protocols; Space technology;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Security Applications Conference, 21st Annual

Conference_Location

Tucson, AZ

ISSN

1063-9527

Print_ISBN

0-7695-2461-3

Type

conf

DOI

10.1109/CSAC.2005.55

Filename

1565239