A Study on ARP Attack Prevention Strategies Leveraging Software-Defined Networking

Abstract

With the continued advancement of cloud computing, growing attention has been directed toward dynamic networking, a trend that has in turn accelerated the development of Software-Defined Networking (SDN). SDN enables flexible control over traffic within local area networks (LANs), allowing for rapid detection of device anomalies resulting from various network attacks. By facilitating real-time traffic management, SDN provides a robust foundation for network security. Among the most vulnerable threats to local networks is the ARP attack, which, if successfully executed, can disrupt or completely halt communication. Through a detailed analysis of the ARP protocol and its operational principles, this paper identifies the primary types of ARP attacks. In response, an ARP attack prevention mechanism based on the SDN architecture is proposed. By enabling comprehensive monitoring and analysis of overall network traffic conditions, the proposed approach facilitates rapid response to ARP attacks and supports the implementation of effective countermeasures, thereby ensuring the normal operation of network devices within the LAN.