A Review of Man-in-the-Middle Attacks
Subodh Gangan
TL;DR
This paper surveys man-in-the-middle attacks in communication networks, detailing common attack methods like ARP poisoning and DNS spoofing, and discusses real-time detection techniques based on timing information.
Contribution
It provides a comprehensive overview of MIM attack types, their detection methods, and protection strategies, highlighting real-time detection approaches.
Findings
ARP cache poisoning is a prevalent attack method
Timing information can help detect MIM attacks in real time
Protection strategies vary based on attack type
Abstract
This paper presents a survey of man-in-the-middle (MIM) attacks in communication networks and methods of protection against them. In real time communication, the attack can in many situations be discovered by the use of timing information. The most common attacks occur due to Address Resolution Protocol (ARP) cache poisoning, DNS spoofing, session hijacking, and SSL hijacking.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsUser Authentication and Security Systems · Opportunistic and Delay-Tolerant Networks · Advanced Authentication Protocols Security