Detecting End-Point (EP) Man-In-The-Middle (MITM) Attack based on ARP Analysis: A Machine Learning Approach

Jerry John Kponyo(1), Justice Owusu Agyemang(2*), Griffith Selorm Klogo(3)
(1) 
(2) Kwame Nkrumah University of Science and Technology
(3) 
(*) Corresponding Author

Abstract

End-Point (EP) Man-In-The-Middle (MITM) attack is a well-known threat in computer security. This attack targets the flow of information between endpoints. An attacker is able to eavesdrop on the communication between two targets and can either perform active or passive monitoring; this affects the confidentiality and integrity of the data flow. Several techniques have been developed by researchers to address this kind of attack. With the current emergence of machine learning (ML) models, we explore the possibility of applying ML in EP MITM detection. Our detection technique is based on Address Resolution Protocol (ARP) analysis. The technique combines signal processing and machine learning in detecting EP MITM attack. We evaluated the accuracy of the proposed technique using linear-based ML classification models. The technique proved itself to be efficient by producing a detection accuracy of 99.72%.

Article Statistic

Abstract view : 22 times
PDF views : 10 times

How To Cite This :

Refbacks

  • There are currently no refbacks.


Institute of Computing, International Journal of Communication Networks and Information Security (IJCNIS)               ISSN: 2073-607X (Online)