KORPORATIV TARMOQLARDA ARP SPOOFING HUJUMLARINI ANIQLASH VA OLDINI OLISH

Qo‘yliyev Behro‘z Sherzod o‘g‘li; Xayriddinov Shaxboz Shavkatovich; Normamatov Xusan Baxodir o‘g‘li; Seytmamatov Sohibjon Muzaffar o‘g‘li

KORPORATIV TARMOQLARDA ARP SPOOFING HUJUMLARINI ANIQLASH VA OLDINI OLISH

Authors

Qo‘yliyev Behro‘z Sherzod o‘g‘li TATU, Kiberxavfsizlik fakulteti talabalari
Xayriddinov Shaxboz Shavkatovich TATU, Kiberxavfsizlik fakulteti talabalari
Normamatov Xusan Baxodir o‘g‘li TATU, Kiberxavfsizlik fakulteti talabalari
Seytmamatov Sohibjon Muzaffar o‘g‘li TATU, Kiberxavfsizlik fakulteti talabalari

Keywords:

ARP spoofing, ARP poisoning, Man-in-the-Middle, kiberxavfsizlik, intrusion detection, korporativ tarmoq, network security, Ethernet.

Abstract

Korporativ tarmoqlarda axborot almashinuvi jarayonida ARP (Address Resolution Protocol) protokoli muhim rol o‘ynaydi. Ushbu protokol IP manzillarni MAC manzillarga moslashtirish uchun xizmat qiladi. Biroq ARP protokolida autentifikatsiya mexanizmining mavjud emasligi uni turli kiberhujumlarga, xususan ARP spoofing va ARP poisoning hujumlariga zaif qiladi. Mazkur hujumlar natijasida hujumchi tarmoq trafiklarini ushlab qolishi, foydalanuvchi ma’lumotlarini o‘g‘irlashi yoki “Man-in-the-Middle” hujumlarini amalga oshirishi mumkin

References

William Stallings. Network Security Essentials. Pearson Education, 2017.

Behrouz Forouzan. Data Communications and Networking. McGraw-Hill, 2013.

Eric Cole. Network Security Bible. Wiley Publishing, 2011.

Scarfone K. Guide to Intrusion Detection and Prevention Systems. NIST, 2012.

Omar Santos. Cisco Cybersecurity Operations Fundamentals. Cisco Press, 2018.

RFC 826 – Address Resolution Protocol.

OWASP Network Attack Reports.

IEEE Research on ARP Spoofing Detection Systems.

KORPORATIV TARMOQLARDA ARP SPOOFING HUJUMLARINI ANIQLASH VA OLDINI OLISH