Address resolution protocol spoofing attacks and security approaches: A survey

Hijazi, Sherin; Obaidat, Mohammad S.

doi:10.1002/spy2.49

Cited by 26 publications

(18 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Some studies [7,[14][15][16][17][18][19][20] in the current literature have carried out a survey to classify and analyze various solutions to mitigate the ARP Cache Poisoning Attack in traditional networks. In [7], authors carry out a survey on MITM attacks in traditional networks.…”

Section: Related Workmentioning

confidence: 99%

“…All these solutions are briefly explained by authors in [7]; however, critical evaluation of various solutions is limited and future research directions are not proposed. A survey on various detection and mitigation solutions to the ARP Cache Poisoning attack is also presented in [14]. A key feature of research presented in [14] is the proposal of three future research directions to detect and mitigate this attack.…”

Section: Related Workmentioning

confidence: 99%

“…Future research directions that outline promising investigation areas are discussed. We note that a few surveys [7,[14][15][16] have been carried out in the existing literature regarding the ARP Cache Poisoning attack. However, surveys carried out in [7,[14][15][16] are focused on non-SDN based solutions for ARP Cache Poisoning attack and do not discuss SDN based solutions.…”

Section: Introductionmentioning

confidence: 99%

“…We note that a few surveys [7,[14][15][16] have been carried out in the existing literature regarding the ARP Cache Poisoning attack. However, surveys carried out in [7,[14][15][16] are focused on non-SDN based solutions for ARP Cache Poisoning attack and do not discuss SDN based solutions. In [17], the authors have carried out a survey of SDN based solutions for ARP Cache Poisoning attack; however, this study is limited to explanation of few solutions with no critical evaluation.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Mitigating ARP Cache Poisoning Attack in Software-Defined Networking (SDN): A Survey

Shah

Cosgrove

2019

Electronics

View full text Add to dashboard Cite

Address Resolution Protocol (ARP) is a widely used protocol that provides a mapping of Internet Protocol (IP) addresses to Media Access Control (MAC) addresses in local area networks. This protocol suffers from many spoofing attacks because of its stateless nature and lack of authentication. One such spoofing attack is the ARP Cache Poisoning attack, in which attackers poison the cache of hosts on the network by sending spoofed ARP requests and replies. Detection and mitigation of ARP Cache Poisoning attack is important as this attack can be used by attackers to further launch Denial of Service (DoS) and Man-In-The Middle (MITM) attacks. As with traditional networks, an ARP Cache Poisoning attack is also a serious concern in Software Defined Networking (SDN) and consequently, many solutions are proposed in the literature to mitigate this attack. In this paper, a detailed survey on various solutions to mitigate ARP Cache Poisoning attack in SDN is carried out. In this survey, various solutions are classified into three categories: Flow Graph based solutions; Traffic Patterns based solutions; IP-MAC Address Bindings based solutions. All these solutions are critically evaluated in terms of their working principles, advantages and shortcomings. Another important feature of this survey is to compare various solutions with respect to different performance metrics, e.g., attack detection time, ARP response time, calculation of delay at the Controller etc. In addition, future research directions are also presented in this survey that can be explored by other researchers to propose better solutions to mitigate the ARP Cache Poisoning attack in SDN.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Mitigating ARP Cache Poisoning Attack in Software-Defined Networking (SDN): A Survey

Shah

Cosgrove

2019

Electronics

View full text Add to dashboard Cite

show abstract

“…However, the vulnerabilities in the ARP structure have resulted in security breaches by spoofing the IP/MAC addresses. These types of attacks on the ARP are more problematic for the cloud centers and particularly in the open cloud environments [17]. ARP translates the IP address into MAC address by defining the destination through broadcasting and deciding the host through response frames received.…”

Section: Introductionmentioning

confidence: 99%

SM ARP Stochastic Markovian Game Model for Packet Forwarding Based ARP Spoofing Attacks Detection

Divya¹,

Christopher²

2019

IJEAT

View full text Add to dashboard Cite

Address Resolution Protocol (ARP) spoofing attacks have become the most pivotal attacks in deteriorating the performance of computer networks. The objective of this paper is to develop SM-ARP, Stochastic Markovian game model based ARP spoofing attack detection scheme.Although many recent techniques have been developed to detect and protect against ARP spoofing attacks, the practical challenges has led to ineffective utilization. The major challenge is that the attackers employing ARP spoofing tend to alter the attack strategy at each point and increases the difficulty in detection and security implementations. The packet forwarding relaying is one suchattack strategy which is harder to detect using traditionally proven methodologies. This paper tackles the packet forwarding relay strategy based ARP spoofing attack strategy by using the proposed SM-ARPto eliminate the attack in a practically feasible manner. The proposed model utilizes a stationary Markov model for optimizing the packet forwarding behaviour of the networks. When an ARP spoofing attack is initiated, the SM-ARP model tracks the changes in the packet forwarding patterns through cache table and detects the misbehaviours. As a security measure, these misbehaved nodes are entitled to recovery and repair process to restore the network to stabilized state. Experiments are conducted to evaluate the performance of SM-ARP in an application for student marks management system. The results prove that the proposed SM-ARP model improves the detection of ARP spoofing attacks with accuracy of 88.2% and also reduces the complexity and errors.

show abstract

Securing internet of things using machine and deep learning methods: a survey

Ghaffari,

Jelodari,

pouralish

et al. 2024

Cluster Comput

View full text Add to dashboard Cite

The Internet of Things (IoT) is a vast network of devices with sensors or actuators connected through wired or wireless networks. It has a transformative effect on integrating technology into people’s daily lives. IoT covers essential areas such as smart cities, smart homes, and health-based industries. However, security and privacy challenges arise with the rapid growth of IoT devices and applications. Vulnerabilities such as node spoofing, unauthorized access to data, and cyberattacks such as denial of service (DoS), eavesdropping, and intrusion detection have emerged as significant concerns. Recently, machine learning (ML) and deep learning (DL) methods have significantly progressed and are robust solutions to address these security issues in IoT devices. This paper comprehensively reviews IoT security research focusing on ML/DL approaches. It also categorizes recent studies on security issues based on ML/DL solutions and highlights their opportunities, advantages, and limitations. These insights provide potential directions for future research challenges.

show abstract

Address resolution protocol spoofing attacks and security approaches: A survey

Cited by 26 publications

References 21 publications

Mitigating ARP Cache Poisoning Attack in Software-Defined Networking (SDN): A Survey

Mitigating ARP Cache Poisoning Attack in Software-Defined Networking (SDN): A Survey

SM ARP Stochastic Markovian Game Model for Packet Forwarding Based ARP Spoofing Attacks Detection

Securing internet of things using machine and deep learning methods: a survey

Contact Info

Product

Resources

About