[Olsr-dev] ARP prevention!

Henning Rogge (spam-protected)
Fri Aug 19 10:36:44 CEST 2011


On Thu, 18 Aug 2011 13:37:01 Andrea Di Pasquale wrote:
> 3) Proactive
> ArpON defines the rules of language between hosts on preventing these
> attacks. ArpON is a protocol that allows you to work safely without any
> ARP authentication. Why no authentication? Why it don't use encryption or
> external server, is based on the rules of language that all hosts Arpon
> must respect. These rules of language allow exactly total protection by
> ARP spoofing & co for all hosts that speak the language of ArpON.
Yes, but I think that securing ARP is only a small part of securing layer-2 
against redirections and mallicious traffic. And its a pretty unimportant part 
for mesh networks.

You don't need ARP-spoofing in a wireless net, because you don't have a switch 
there to isolate the nodes from each other. If a node is in range, it can 
always overhear your communication. And it can always pretend to be the valid 
ARP of the valid node.
 
Henning Rogge
-- 
Diplom-Informatiker Henning Rogge , Fraunhofer-Institut für
Kommunikation, Informationsverarbeitung und Ergonomie FKIE
Kommunikationssysteme (KOM)
Neuenahrer Straße 20, 53343 Wachtberg, Germany
Telefon +49 228 9435-961,   Fax +49 228 9435 685
mailto:(spam-protected) http://www.fkie.fraunhofer.de
GPG: E1C6 0914 490B 3909 D944 F80D 4487 C67C 55EC CFE0
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4364 bytes
Desc: not available
URL: <http://lists.olsr.org/pipermail/olsr-dev/attachments/20110819/9d92532f/attachment.bin>


More information about the Olsr-dev mailing list