상세정보
학술지
RTNSS: A Routing Trace-based Network Security System for Preventing ARP Spoofing Attacks
- 저자
- 문대성, 이재동, 정영식, 박종혁
- 발행일
- 201605
- 출처
- Journal of Supercomputing, v.72 no.5, pp.1740-1756
- ISSN
- 0920-8542
- 출판사
- Springer
- 협약과제
- 16MH2100, 다중소스 데이터의 Long-term History 분석기반 사이버 표적공격 인지 및 추적기술 개발, 김익균
- 초록
- The motion of address resolution protocol (ARP) is done without any problem in a general environment, but it is not considered from the security aspect; therefore, it risks being threatened by an attack from the network called ARP spoofing or ARP poisoning. The attacker can approach the transmission data between hosts by disguising itself as a different host through an ARP spoofing attack and can isolate the host as the target of an attack from the network. In this paper, we propose a routing trace-based network security system for preventing ARP spoofing attacks. Our proposed system includes detection, protection, and recovery techniques to prevent an ARP spoofing attack in the internal network. Whether an ARP spoofing attack occurs is confirmed through the periodic monitoring of the ARP table and a routing trace. The system can prevent ARP spoofing attacks without modifications to the ARP or the addition of cryptographic measures. In addition, it provides security and efficiency by overcoming the weak points of the existing researches.
- KSP 제안 키워드
- ARP poisoning, ARP spoofing, Address Resolution Protocol(ARP), Network security system, Security and efficiency, Spoofing attack, internal network, periodic monitoring, recovery techniques, weak points