ANALYSIS OF METHODS OF ENSURING PORT SECURITY IN SWITCHES
Keywords:
Keywords — Port Security, STP, PortFast, BPDU, DHCP Snooping, Loop, ARP, MAC filtering.Abstract
Abstract — This article analyzes how to enable port security on the switch, how to prevent port security violations, and how to protect against attacks.
Switches are basic network devices that are mainly responsible for forwarding packets from one port to another. Although they are busy performing this important function, modern switches are capable of inspecting packet headers to enforce security policies at the network level. Port security is a network security feature that operates at layer 2 of the OSI model. It is mainly used to control and restrict access to the Ethernet ports of the switch. By implementing port security, network administrators can allow only authorized devices to connect to specific switch ports.
Today, port security is an important aspect of network infrastructure, not only focused on port protection, but also used to enhance features such as PortFast and Bridge Protocol Data Unit (BPDU) protection, Loop Prevention, DHCP Snooping and MAC filtering.
References
https://www.vskills.in/certification/tutorial/switch-attacks/
https://community.fs.com/article/basic-switch-security-concepts-explained.html
https://library.mosse-institute.com/articles/2023/08/port-security.html
https://www.crowdstrike.com/cybersecurity-101/spoofing-attacks/arp-spoofing/
Regulation (EC) No 725/2004 of the European Parliament and the Council on Enhancing Ship and Port Facility Security, 31 March 2004
Directive 2005/65/EC of the European parliament and the Council on Enhancing Port Security, 26 Oct 2005
I.Vakalis, B.Hosgood, P.Chawdry, “Biometrics for Border Security – An Overview”, Technical Report EUR 22359 EN, European Communities 2006
PortID Consortium, “Study for the Analysis and the Conceptual Development of an European port Access Identification Card (EPAIC)”, Final Report, QINETIC/07/03289,19 Dec 2007
F. Andritsos, M. Mosconi, “Port Security in EU: a Systemic Approach”, 2nd International Conference on Waterside Security (WSS 2010), Marina di Carrara, Italy, November 2010 Conference on Computing Communication and Automation (ICCCA), Greater Noida, India, 14–15 December 2018.
