Date Added: Mar 2010
The Address Resolution Protocol (ARP) has proven to work well under regular circumstances, but it was not designed to cope with malicious hosts. By performing ARP spoofing attacks, a malicious host can either impersonate another host [Man-In-the-Middle attack (MiM)] and gain access to sensitive information, or perform Denial of Service attack (DoS) on target hosts. Several security solutions, such as high-cost LAN switches and Intrusion Detection or Prevention Systems (IDS/IPS), are currently used to detect and prevent these attacks. In this paper, the authors evaluate, through extensive practical experiments, how effective these security solutions are in detecting ARP spoofing.