CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 12453 > Article
Paper
28 October 2022 ARP spoofing forensics based on network data flow
Lin Zhu, Binglong Li D.D.S., Heyu Zhang
Author Affiliations +
Proceedings Volume 12453, Third International Conference on Computer Communication and Network Security (CCNS 2022); 1245307 (2022) https://doi.org/10.1117/12.2659380
Event: Third International Conference on Computer Communication and Network Security (CCNS 2022), 2022, Hohhot, China
Abstract
Among the many network protocols, the protocol responsible for obtaining the Mac address based on the IP address is called the Address Resolution Protocol (ARP). Since the ARP protocol is a stateless protocol and lacks an authentication mechanism for the data source of the request/response signal, any client can forge malicious ARP packets to poison the ARP cache table of the target host. Attacks based on ARP spoofing are very harmful, and will lead to reduced network transmission efficiency, network congestion, and even user information theft and privacy leakage. This paper uses wireshark software to view network traffic, and analyzes the implementation principles and characteristics of man-in-the-middle attacks (MITM), denial of service attacks (DoS), and MAC flooding based on ARP spoofing. A forensic method for ARP spoofing attack based on network data flow analysis is proposed.
© (2022) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Lin Zhu, Binglong Li D.D.S., and Heyu Zhang "ARP spoofing forensics based on network data flow", Proc. SPIE 12453, Third International Conference on Computer Communication and Network Security (CCNS 2022), 1245307 (28 October 2022); https://doi.org/10.1117/12.2659380
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 6 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Forensic science
Content addressable memory
Inspection
Network security
Analytical research
Computer networks
Digital forensics
RELATED CONTENT
VAFLE: visual analytics of firewall log events
Proceedings of SPIE (February 03 2014)
Quantification of moving target cyber defenses
Proceedings of SPIE (May 23 2015)
Design and implementation of dynamic hybrid Honeypot network
Proceedings of SPIE (May 29 2013)
Using technology to support investigations in the electronic age ...
Proceedings of SPIE (March 07 1994)
Virtual terrain a security based representation of a computer...
Proceedings of SPIE (March 17 2008)
The forensic validity of visual analytics
Proceedings of SPIE (January 28 2008)
How to improve MEBES III Write times by improving your...
Proceedings of SPIE (December 08 1995)
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top