Date Added: Jan 2012
This paper proposes a novel ARP authentication scheme based on an ARP authentication trailer and a new technique for hiding the target IP address in an ARP request message. The scheme provides a method to defend ARP attacks. In addition to avoid ARP attacks, the proposed scheme is backward compatible with existing ARP, no additional header fields are added to the protocol. The scheme supports both dynamic and static IP address assignment. The authors' experimental analysis shows that the proposed scheme can successfully defend various ARP attacks and can also improve overall network security without the need for complex configuration/installation or an additional server.