Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
ACSAC
1999
IEEE
1999
IEEE
A Middleware Approach to Asynchronous and Backward Compatible Detection and Prevention of ARP Cache Poisoning
This paper discusses the Address Resolution Protocol (ARP) and the problem of ARP cache poisoning. ARP cache poisoning is the malicious act, by a host in a LAN, of introducing a spurious IP address to MAC (Ethernet) address mapping in another host's ARP cache. We discuss design constraints for a solution: the solution needs to be implemented in middleware, without access or change to any operating system source code, be backward-compatible to the existing protocol, and be asynchronous. We present our solution and implementation aspects of it in a Streams based networking subsystem. Our solution comprisestwoparts: a"bumpinthestack"Streamsmodule, and a separate Stream with a driver and user-level application. We also present the algorithm that is executed in the module and applicationto prevent ARP cache poisoning where possible, and detect and raise alarms otherwise. We then discuss some limitations with our approach and present some preliminary performance numbers for o...
Real-time Traffic| Added | 02 Aug 2010 |
| Updated | 02 Aug 2010 |
| Type | Conference |
| Year | 1999 |
| Where | ACSAC |
| Authors | Mahesh V. Tripunitara, Partha Dutta |
Comments (0)
Researcher Info
|
