Analysis of Network Attacks at Data Link Layer and its Mitigation

Abstract

Various packet capturing tools are available to capture packets in the form of datasets and several well-known datasets available now a day for benchmarking the network attacks for intrusion detection system and attracted the researchers to further analyse these attacks for future attacks also. These datasets contain several parameters that can be utilized for identification of attack at cross layers. Here the cross layer refers the data link layer, network layer, transport layer and application layer. These datasets can be used in research for identification and automation of novel attack. This paper concentrates on the attack types and classification of network attacks on data link layer. Post analysis will investigate the possibility of using Snort as intrusion detection tool for identifying attack at data link layer. Snort generally works at network layer and above so not all data link layer attack can be identified by IDS. For the current work a various solution already researched will be put together to analyse attack at data link layer with the help of Snort. This analysis will help in understanding the possibility to put together various attack at data link layer using Snort or provide already suggested solution done by various researcher.