TARP: Ticket-based Address Resolution Protocol

14 years 5 months ago

Download www.acsac.org

IP networks fundamentally rely on the Address Resolution Protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation, man-in-the-middle, or DoS attacks. Proposed countermeasures to these vulnerabilities have yet to simultaneously address backward compatibility and cost requirements. This paper introduces the Ticket-based Address Resolution Protocol (TARP). TARP implements security by distributing centrally issued secure MAC/IP address mapping attestations through existing ARP messages. We detail the TARP protocol and its implementation within the Linux operating system. Our experimental analysis shows that TARP improves the costs of implementing ARP security by as much as two orders of magnitude over existing protocols. We conclude by exploring a range of operational issues associated with deploying and administering ARP security.

Wesam Lootah, William Enck, Patrick McDaniel

Real-time Traffic

ACSAC 2005 | Address Resolution Protocol | ARP Protocol | ARP Security | Security Privacy |

claim paper

Post Info
More Details (n/a)

Added	24 Jun 2010
Updated	24 Jun 2010
Type	Conference
Year	2005
Where	ACSAC
Authors	Wesam Lootah, William Enck, Patrick McDaniel

Comments (0)

Sciweavers

TARP: Ticket-based Address Resolution Protocol

ACSAC 2005 | Address Resolution Protocol | ARP Protocol | ARP Security | Security Privacy |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers