TARP: Ticket-based Address Resolution Protocol

Tucson, Arizona December 05-December 09

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.55

21st Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Wesam Lootah Articles by William Enck Articles by Patrick McDaniel

	ASCII Text	x
	Wesam Lootah, William Enck, Patrick McDaniel, "TARP: Ticket-based Address Resolution Protocol," Computer Security Applications Conference, Annual, pp. 106-116, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005.

	BibTex	x
	@article{ 10.1109/CSAC.2005.55, author = {Wesam Lootah and William Enck and Patrick McDaniel}, title = {TARP: Ticket-based Address Resolution Protocol}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2005}, issn = {1063-9527}, pages = {106-116}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.55}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - TARP: Ticket-based Address Resolution Protocol SN - 1063-9527 SP106 EP116 A1 - Wesam Lootah, A1 - William Enck, A1 - Patrick McDaniel, PY - 2005 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Wesam Lootah, Pennsylvania State University

William Enck, Pennsylvania State University

Patrick McDaniel, Pennsylvania State University

IP networks fundamentally rely on the Address Resolution Protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation, man-in-the-middle, or DoS attacks. Proposed countermeasures to these vulnerabilities have yet to simultaneously address backward compatibility and cost requirements. This paper introduces the Ticket-based Address Resolution Protocol (TARP). TARP implements security by distributing centrally issued secure MAC/IP address mapping attestations through existing ARP messages. We detail the TARP protocol and its implementation within the Linux operating system. Our experimental analysis shows that TARP improves the costs of implementing ARP security by as much as two orders of magnitude over existing protocols. We conclude by exploring a range of operational issues associated with deploying and administering ARP security.

Citation:

Wesam Lootah, William Enck, Patrick McDaniel, "TARP: Ticket-based Address Resolution Protocol," acsac, pp.106-116, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.