Path: Top -> Journal -> Jurnal Internasional -> Journal -> Computer
An Intelligent Approach of Sniffer Detection
An Intelligent Approach of Sniffer Detection
2012Journal from gdlhub / 2017-08-14 11:52:31
Oleh : Abdul Nasir Khan, Kalim Qureshi, Sumair Khan , IAJIT
Dibuat : 2012-06-22, dengan 1 file
Keyword : Network security, sniffer, ARP cache poisoning, IP packet routing
Subjek : An Intelligent Approach of Sniffer Detection
Url : http://www.ccis2k.org/iajit/PDF/vol.9,no.1/968.pdf
Sumber pengambilan dokumen : Internet
ARP cache poisoning and putting host Network Interface Card (NIC) in promiscuous mode are ways of sniffer
attacks. ARP cache poisoning attack is effective in an environment which is not broadcast in nature (like switch LAN
environment) and other attack is effective in an environment which is broadcast in nature (like hub, bus, access point LAN
environments). Sniffing is malicious activity performed by network user and because of this network security is at risk so
detection of sniffer is essential task to maintain network security. Sniffer detection techniques can be divided into two main
categories. First categorys techniques are used to detect a sniffer host that runs its NIC into promiscuous mode and second
categorys techniques are used to detect a sniffer host that uses ARP cache poisoning for sniffing. The network configuration is
hidden form users. Network users do not have any information about nature of network. Therefore, users of network may
invoke such sniffer detection technique that is not effective in that environment. This may result in sharing of his private and
confidential information with malicious users. In this paper, we designed an intelligent invocation module that checks the
nature of environment automatically and invokes appropriate, sniffer detection technique for that environment. With the help
of this invocation module it is possible to detect passive as well as active sniffer hosts in both environments.
ARP cache poisoning and putting host Network Interface Card (NIC) in promiscuous mode are ways of sniffer
attacks. ARP cache poisoning attack is effective in an environment which is not broadcast in nature (like switch LAN
environment) and other attack is effective in an environment which is broadcast in nature (like hub, bus, access point LAN
environments). Sniffing is malicious activity performed by network user and because of this network security is at risk so
detection of sniffer is essential task to maintain network security. Sniffer detection techniques can be divided into two main
categories. First categorys techniques are used to detect a sniffer host that runs its NIC into promiscuous mode and second
categorys techniques are used to detect a sniffer host that uses ARP cache poisoning for sniffing. The network configuration is
hidden form users. Network users do not have any information about nature of network. Therefore, users of network may
invoke such sniffer detection technique that is not effective in that environment. This may result in sharing of his private and
confidential information with malicious users. In this paper, we designed an intelligent invocation module that checks the
nature of environment automatically and invokes appropriate, sniffer detection technique for that environment. With the help
of this invocation module it is possible to detect passive as well as active sniffer hosts in both environments.
Beri Komentar ?#(0) | Bookmark
| Properti | Nilai Properti |
|---|---|
| ID Publisher | gdlhub |
| Organisasi | IAJIT |
| Nama Kontak | Herti Yani, S.Kom |
| Alamat | Jln. Jenderal Sudirman |
| Kota | Jambi |
| Daerah | Jambi |
| Negara | Indonesia |
| Telepon | 0741-35095 |
| Fax | 0741-35093 |
| E-mail Administrator | elibrarystikom@gmail.com |
| E-mail CKO | elibrarystikom@gmail.com |
Print ...
Kontributor...
- , Editor: fachruddin
Download...
Download hanya untuk member.
29E37d01
File : 29E37d01.pdf
(376721 bytes)