Proceedings of the IEEK Conference (대한전자공학회:학술대회논문집)

The Institute of Electronics and Information Engineers (대한전자공학회)
권호 표지

A Study on Intrusion Detection of ARP Poisoning Attack on Wireless LAN

  • Ham Young Hwan (Information Security Division, Electronics and Telecommunications Research Institute) ;
  • Lee Sok Joon (Information Security Division, Electronics and Telecommunications Research Institute) ;
  • Chung Byung Ho (Information Security Division, Electronics and Telecommunications Research Institute) ;
  • Chung Kyoll (Information Security Division, Electronics and Telecommunications Research Institute) ;
  • Chung Jin Wook (School of Electrical and Computer Engineering, SungKyunKwan University)
  • Published : 2004.08.01
Download PDF
⟨ Previous Next ⟩

Abstract

Address Resolution Protocol (ARP) cache poisoning is a MAC layer attack that can only be carried out when an attacker is connected to the same local network as the target machines. ARP is not a new problem, but wireless network introduces a new attack point and more vulnerable to the attack. The attack on wireless network cannot be detected by current detection tool installed on wired network. In order to detect the ARP poisoning attack, there must be a ARP poisoning detection tool for wireless LAN environment. This paper proposes linux-based ARP poisoning detection system equipped with wireless LAN card and Host AP device driver

Keywords