A MACHINE LEARNING-BASED APPROACH FOR DETECTING ARP SPOOFING ATTACKS IN IOT NETWORKS
Автор: Hilmand Khan, Sibgha Tahir, Umar Akhlag, Azhar Ghafoor, Jameel Arif
Организация: Air University, University of Strathclyde
Категория:
Ключевые слова: IoT Security; ARP Spoofing; Machine Learning; Detection
Аннотация. The rapid expansion of the Internet of Things (IoT) has broadened the digital attack surface, exposing network infrastructures to advanced threats such as ARP spoofing. Traditional detection systems, often relying on rule-based or signature-driven methods, struggle to adapt to the dynamic and heterogeneous nature of IoT environments. To address this limitation, this paper proposes a detailed evaluation of several detection models for Address Resolution Protocol (ARP) spoofing attacks within resource-limited Internet of Things (IoT) environments. Focusing on both detection accuracy and computational efficiency, six models—comprising traditional classifiers and hybrid ensembles—are compared using metrics such as accuracy, precision, recall, F1-score, training/testing time, and memory usage. The proposed OSK hybrid model, which integrates Support Vector Machine and k-Nearest Neighbors, achieves the highest detection performance while maintaining moderate resource consumption. The findings reveal important trade-offs between detection capability and system constraints, emphasizing the effectiveness of optimized hybrid solutions for real-time implementation in IoT networks. This work contributes valuable guidance for developing efficient and reliable ARP spoofing detection frameworks tailored to the demands of IoT devices.
Библиография:
Abdulla, Husain, Hamed Al-Raweshidy, and Wasan S. Awad. 2020. “ARP Spoofing Detection for IoT Networks Using Neural Networks.” In Proceedings of the Industrial Revolution & Business Management: 11th Annual PwR Doctoral Symposium (PWRDS).
Almomani, Omar, Arafat Abu Mallouh, Mohammad Alauthman, Ammar Almomani, Ahmad Al-Qerem, and Brij B. Gupta. 2024. “Performance Evaluation of Machine Learning Classifiers for Predicting Denial-of-Service Attack in Internet of Things.” International Journal of Advanced Computer Science & Applications 15 (1).
Anagnostopolos, MARIOS, Dimitra Kritsotaki, Evangelos Sdongos, and Christos Xenakis. 2022. “Topics in Digital Forensics: A Review of Reviews.” *2019* 1: 962938
Bazzi, Hiba, Ali Nassar, Mostafa Bizri, et al. 2024. “A PRACTICAL INTRUSION DETECTION APPROACH FOR ARP SPOOFING AND MITM IN LOCAL AREA NETWORKS.” BAU Journal-Science and Technology 6 (1): 10
Chataut, Robin, Alex Phoummalayvane, and Robert Akl. 2023. “Unleashing the Power of IoT: A Comprehensive Review of IoT Applications and Future Prospects in Healthcare, Agriculture, Smart Homes, Smart Cities, and Industry 4.0.” Sensors 23 (16): 7194
Chen, Rong. 2024. “Design of Intelligent Password Lock Based on Arduino.” In 2024 4th International Conference on Electronic Information Engineering and Computer Science (EIECS), 631–35. IEEE.
Data, Mahendra. 2018. “The Defense Against ARP Spoofing Attack Using Semi-Static ARP Cache Table.” In 2018 International Conference on Sustainable Information Engineering and Technology (SIET), 206–10. IEEE
Dharani, M, A Sangeetha, S Jayaprakash, R Rajmohan, and P Mohamed Shakeel. 2024. “Detection of ARP Spoofing with Optimized False Alarm Using Deep Learning Based Absolute Thresholding.” In 2024 4th International Conference on Sustainable Expert Systems (ICSEs), 1650–57. IEEE.
Fereidouni, Vicky, Amar Saraswat, and Shweta Bansal. 2023. “An Analysis of Securing Internet of Things (IoT) Devices from Man-in-the-Middle (MITM) and Denial of Service (DoS).” In Smart Cities, 337–57. CRC Press
Friedl, Sabrina, and Günther Pernul. 2024. “Forensic Analysis of an IoT ARP Spoofing Attack.” In 2024 12th International Symposium on Digital Forensics and Security (ISDFS), 1–7. IEEE
Hashimyar, Mohammad Emran, Mohammad Karim Sohrabi, and Faramarz Safi-Esfahani. 2025. “Signature-Based Security Analysis and Detection of IoT Threats in Advanced Message Queuing Protocol.” Network 5 (1).
Heidari, Arash, and Mohammad Ali Jabraeil Jamali. 2023. “Internet of Things Intrusion Detection Systems: A Comprehensive Review and Future Directions.” Cluster Computing 26 (6): 3753–80.
Herrero, Rolando. 2023. Practical Internet of Things Networking. Springer
Hnamte, Vanlalruata, and Jamal Hussain. 2024. “Enhancing Security in Software-Defined Networks: An Approach to Efficient ARP Spoofing Attacks Detection and Mitigation.” Telematics and Informatics Reports 14: 100129
Islam, Nahida, Sudipta Chowdhury, Md Delowar Hossain, Md Ashraf Uddin, and Mohammad Shorif Uddin. 2021. “Towards Machine Learning Based Intrusion Detection in IoT Networks.” Comput. Mater. Contin 69 (2): 1801–21.
Jadhav, Swati, Disha Vedpathak, Monali Shetty, Manali Kshirsagar, and Smita Sankhe. 2023. “Detection and Mitigation of ARP Spoofing Attack.” In International Conference On Innovative Computing And Communication, 383–96. Springer
Kassab, Wafa’a, and Khalid A. Darabkh. 2020. “A-Z Survey of Internet of Things: Architectures, Protocols, Applications, Recent Advances, Future Directions and Recommendations.” Journal of Network and Computer Applications 163: 102663
Kemp, Clifford. 2021. “Collection and Analysis of Slow Denial of Service Attacks Using Machine Learning Algorithms.” PhD diss., Florida Atlantic University
Kolhar, Manjur, Manjur Ahmed, S. M. Shamsuddin, and N. M. Saipunidzam. 2020. “A Three Layered Decentralized IoT Biometric Architecture for City Lockdown During COVID-19 Outbreak.” IEEE Access 8: 163608–17
Kumar, Mrinal, and Chandra Sekhar Dash. 2024. “Detecting and Preventing ARP Spoofing Attacks Using Real-Time Data Analysis and Machine Learning.” International Journal of Innovative Research in Computer Science and Technology 12 (5).
Kurniawan, Agus. 2021. IoT Projects with Arduino Nano 33 BLE Sense. Berkeley: Apress.
Majumdar, Aayush, Shruti Raj, and T. Subbulakshmi. 2021. “ARP Poisoning Detection and Prevention Using Scapy.” In Journal of Physics: Conference Series, Vol. 1911, 012022. IOP Publishing
Morsy, Sabah M., and Dalia Nashat. 2022. “D-ARP: An Efficient Scheme to Detect and Prevent ARP Spoofing.” IEEE Access 10: 49142–53
Mvah, Fabrice, Jean Marcel Nkenlifack, and Marcellin Julius Nkenlifack. 2024. “GaTeBaSep: Game Theory-Based Security Protocol Against ARP Spoofing Attacks in Software-Defined Networks.” International Journal of Information Security 23 (1): 373–87
Nasser, Hiba Imad, and Mohammed Abdulridha Hussain. 2022. “Provably Curb Man-in-the-Middle Attack-Based ARP Spoofing in a Local Network.” Bulletin of Electrical Engineering and Informatics 11 (4): 2280–91.
Neto, Euclides Carlos Pinto, Salem Othman, Ahmed J. Obaid, Rasha H. Ali, Shadi R. Masadeh, and Mohammad Sh. Daoud. 2023. “CICIoT2023: A Real-Time Dataset and Benchmark for Large-Scale Attacks in IoT Environment.” Sensors 23 (13): 5941.
Olateju, Omobolaji, Oluwaseyi Ogunjobi, Babatunde Akinola, Oluwaseun Ajao, Oluwaseyi Alao, and Odunayo Ajayi. 2024. “Combating the Challenges of False Positives in AI-Driven Anomaly Detection Systems and Enhancing Data Security in the Cloud.” Available at SSRN 4859958
Petrosyan, Ani. 2023. “Global Monthly Number of Cyber Attacks in Automotive Sector 2022-2023.” Retrieved September 10: 2024
Quanjiang, Shen, Chen Liang, Jinxia Yu, and Li Xinqiang. 2021. “Large Scale Firmware Analysis for Open Source Components, Hard Coding and Weak Passwords.” In 2021 IEEE International Conference on Consumer Electronics and Computer Engineering (ICCECE), 232–36. IEEE
Quinn, Thomas Patrick. 2023. An Assessment of the US Preparedness for Foreign Cybersecurity Threats. Northeastern Illinois University
Rafique, Vanlalruata, and Jamal Hussain. 2024. “Enhancing Security in Software-Defined Networks: An Approach to Efficient ARP Spoofing Attacks Detection and Mitigation.” Telematics and Informatics Reports 14: 100129
Rohatgi, Vaishnavi, and Shimpy Goyal. 2020. “A Detailed Survey for Detection and Mitigation Techniques Against ARP Spoofing.” In *2020 Fourth International Conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud)(I-SMAC)*, 352–56. IEEE
Saaidah, Adeeb, M. R. M. Rizk, M. A. M. Abushariah, and M. A. Al-Qutaisi. 2019. “A Comprehensive Survey on Node Metrics of RPL Protocol for IoT.” Mod. Appl. Sci 13 (1).
Sadineni, Lakshminarayana, Emmanuel P. Silli, and Ramesh Babu Battula. 2022. “ProvNet-IoT: Provenance Based Network Layer Forensics in Internet of Things.” Forensic Science International: Digital Investigation 43: 301441
Shambour, Qusai Y., Mosleh M. Abu-Alhaj, and Mayy M. Al-Tahrawi. 2020. “A Hybrid Collaborative Filtering Recommendation Algorithm for Requirements Elicitation.” International Journal of Computer Applications in Technology 63 (1-2): 135–46
Suethanuwong, Ekarin. 2025. “An Effective Prevention Approach Against ARP Cache Poisoning Attacks in MikroTik-Based Networks.” ECTI Transactions on Computer and Information Technology (ECTI-CIT) 19 (1): 1–12.
Sun, Quan, Kehao Wang, Huimei Han, Kaoru Ota, Mianxiong Dong, and Jun Wu. 2021. “Spoofing Attack Detection Using Machine Learning in Cross-Technology Communication.” Security and Communication Networks 2021 (1): 3314595
Taşcı, Burak. 2024. “Deep-Learning-Based Approach for IoT Attack and Malware Detection.” Applied Sciences (Switzerland) 14 (18): 8505
Usmani, Mehak, Adnan Ahmed, Shahab Haider, Muhammad Faizan, and Muhammad Ali Shamim. 2022. “Predicting ARP Spoofing with Machine Learning.” In 2022 International Conference on Emerging Trends in Smart Technologies (ICETST), 1–6. IEEE
Vajrobol, Vajratiya, O. M. Jothi, A. N. Jayanthi, S. Shitharth, and Surbhi Bhatia. 2024. “Identify Spoofing Attacks in Internet of Things (IoT) Environments Using Machine Learning Algorithms.” Journal of High Speed Networks 31 (1): 61–70
Zhou, Xin’an, Qingyang Zhu, Zhiliang Wang, Xia Yin, and Xingang Shi. 2024. “Untangling the Knot: Breaking Access Control in Home Wireless Mesh Networks.” In Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security, 2072–86
Меню