Skip to main content
SpringerLink
Log in

Information and Identity Theft Without ARP Spoofing in LAN Environments

  • Conference paper
  • First Online:
Future Data and Security Engineering (FDSE 2016)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 10018))

Included in the following conference series:

  • 1342 Accesses

Abstract

Nowadays almost every website use a membership based portal in which each user have a series of permissions that allow him to conduct several actions, in order to check which user has which permissions they use a SessionID this ID allows the web portal to identify the user and grant him the permissions and the information that they need or paid for, this SessionID is sent by HTTP requests so if a third person is able to successfully sniff a package and extract the SessionID, this person will be able to access to the system using the permissions of that member. ARP Spoofing it’s a well-known method for sniffing packets although there are effective and easy methods to protect it such as, Static ARP, IDS/IPS systems, port security and other mechanisms of protection. This paper aims to show a technique in sniffing data on a LAN environment without the use of ARP Spoofing in order to be undetectable, unpreventable and effective all focused on Session Hijacking.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Download references

Author information

Authors and Affiliations

  1. Universidad Nacional de Colombia, Bogotá D.C., Colombia

    Camilo Albarracin & Octavio J. Salcedo Parra

  2. Internet Inteligente Research Group, Universidad Distrital Francisco José de Caldas, Bogotá D.C., Colombia

    Brayan S. Reyes Daza & Octavio J. Salcedo Parra

Authors
  1. Camilo Albarracin
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Brayan S. Reyes Daza
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Octavio J. Salcedo Parra
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Brayan S. Reyes Daza .

Editor information

Editors and Affiliations

  1. University of Technology, Ho Chi Minh City, Vietnam

    Tran Khanh Dang

  2. Johannes Kepler University , Linz, Austria

    Roland Wagner

  3. Johannes Kepler University , Linz, Austria

    Josef Küng

  4. University of Technology, Ho Chi Minh City, Vietnam

    Nam Thoai

  5. Hosei University , Tokyo, Japan

    Makoto Takizawa

  6. University of Vienna , Wien, Austria

    Erich Neuhold

Rights and permissions

Reprints and permissions

Copyright information

© 2016 Springer International Publishing AG

About this paper

Cite this paper

Albarracin, C., Reyes Daza, B.S., Salcedo Parra, O.J. (2016). Information and Identity Theft Without ARP Spoofing in LAN Environments. In: Dang, T., Wagner, R., Küng, J., Thoai, N., Takizawa, M., Neuhold, E. (eds) Future Data and Security Engineering. FDSE 2016. Lecture Notes in Computer Science(), vol 10018. Springer, Cham. https://doi.org/10.1007/978-3-319-48057-2_11

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-48057-2_11

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-48056-5

  • Online ISBN: 978-3-319-48057-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation