A DES approach to intrusion detection system for ARP spoofing attacks

Neminath, H; Biswas, Santosh; Roopa, S.; Ratti, Ritesh; Nandi, Sukumar; Barbhuiya, Ferdous Ahmed; Sur, Arijit; Ramachandran, Vivek

doi:10.1109/med.2010.5547790

Cited by 15 publications

(4 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Several schemes have been proposed in the literature to circumvent these attacks, however, these techniques either make IP-MAC pairing static, modify the existing ARP, patch operating systems of all the hosts etc. Discrete Event System (DES) approach for detecting ARP spoofing attacks does not require any extra constraint like static IP-MAC or changing the ARP [9].…”

Section: Literature Surveymentioning

confidence: 99%

Detection and Prevention of ARP spoofing using Centralized Server

Srinath¹,

Panimalar²,

Simla³

et al. 2015

IJCA

View full text Add to dashboard Cite

The Address Resolution Protocol (ARP) due to its statelessness and lack of an authentication mechanism for verifying the identity of the sender has a long history of being prone to spoofing attacks. ARP spoofing is sometimes the starting point for more sophisticated LAN attacks like denial of service, man in the middle and session hijacking. In a current voting based method an active technique is used for finding out the legitimate one by collection of voting's from the neighboring host. The drawback of this system is most of the host in a LAN must follow the MR-ARP protocol. In this paper a centralized server will collects all the ip-mac pairs of every host in the LAN and maintains a table of legitimate host. Destination host checks the ip-mac conflict in the LAN and informs about the hacker to the centralized server which takes care of the trusted communication between the participating hosts. Hence, the proposed work detection and prevention of ARP spoofing lead to appreciable result.

show abstract

Section: Literature Surveymentioning

confidence: 99%

Detection and Prevention of ARP spoofing using Centralized Server

Srinath¹,

Panimalar²,

Simla³

et al. 2015

IJCA

View full text Add to dashboard Cite

show abstract

“…Goyal and Tripathy proposed a variant of ARP [7] that is based on the combination of digital signatures and one time passwords to authenticate ARP <IP,MAC> bindings. An overhead is created by this method for system to produce the signature generation, key management and verification.…”

Section: Current Counter Measuresmentioning

confidence: 99%

“…Detection Needs contentious traffic monitoring. OTP [7] Based on the combination of digital signatures and Clever use of cryptography allows it one time passwords to authenticate ARP reply. to be significantly faster.…”

Section: Current Trends and Challengesmentioning

confidence: 99%

A Review of Latest Techniques to secure Wireless Networks against ARP Poisoning Attacks

Kaur

Malhotra

2015

IJFGCN

View full text Add to dashboard Cite

show abstract

“…Neminath et al [8] have used discrete event systems approach to detect ARP spoofing attacks in a LAN. They produced two DES models of a network under normal and ARP spoofing attack condition.…”

Section: Previous Workmentioning

confidence: 99%

A Discrete Event System Based Approach for Obfuscated Malware Detection

Patanaik

Barbhuiya

Biswas

et al. 2015

Lecture Notes in Electrical Engineering

View full text Add to dashboard Cite

With the growing use and popularity of Internet among people, security threats such as viruses, worms etc., are also rapidly increasing. In order to detect and prevent such threats, many antivirus softwares have been created. Signature matching approach used to detect malwares can be easily thwarted by using code obfuscation techniques. In this paper, we propose a discrete event systems-based approach to detect obfuscated malwares in a system, taking Bagle. A as our test virus. Commonly used obfuscation techniques have been applied to bagle. We built DES models for a process under attack and normal conditions with system calls as events. Based on the system calls evoked by any process, our detector will determine its maliciousness by comparing it with both the models.

show abstract

A DES approach to intrusion detection system for ARP spoofing attacks

Cited by 15 publications

References 6 publications

Detection and Prevention of ARP spoofing using Centralized Server

Detection and Prevention of ARP spoofing using Centralized Server

A Review of Latest Techniques to secure Wireless Networks against ARP Poisoning Attacks

A Discrete Event System Based Approach for Obfuscated Malware Detection

Contact Info

Product

Resources

About