📘 Ethernet Security — Exam Notes (Network Security)
🔐 1. Definition
Ethernet Security refers to the methods, protocols, and mechanisms used to protect Ethernet-based LAN networks from unauthorized access, attacks, and data breaches.
👉 Simple idea:
It ensures that communication over a wired LAN (Ethernet network) is safe, authenticated, and protected from attackers.
🎯 2. Objectives of Ethernet Security
- Prevent unauthorized access to LAN
- Protect data from sniffing and modification
- Ensure secure communication between devices
- Detect and prevent network attacks
- Maintain integrity of network traffic
🧱 3. Ethernet Overview (Basic Concept)
Ethernet is a widely used LAN technology that works at:
- Data Link Layer (Layer 2 of OSI model)
It uses:
- MAC addresses
- Switches and hubs
- Frames for communication
⚠️ 4. Ethernet Security Threats
🔸 1. MAC Spoofing
- Attacker changes MAC address to impersonate another device
🔸 2. ARP Spoofing
- Fake ARP messages redirect traffic to attacker
🔸 3. Packet Sniffing
- Capturing Ethernet frames to steal data
🔸 4. VLAN Hopping
- Attacker jumps between VLANs to access restricted networks
🔸 5. MAC Flooding
- Overloads switch MAC table
- Switch behaves like a hub → enables sniffing
🛡️ 5. Ethernet Security Mechanisms
🔹 1. Port Security
- Restricts number of MAC addresses per switch port
- Blocks unknown devices
🔹 2. MAC Filtering
- Allows or denies devices based on MAC address
🔹 3. VLAN Segmentation
- Divides network into isolated groups
- Limits attack spread
🔹 4. IEEE 802.1X Authentication
- Provides port-based network access control
- Requires authentication before network access
🔹 5. Encryption (MACsec - IEEE 802.1AE)
- Encrypts Ethernet frames at Layer 2
- Ensures confidentiality and integrity
🔹 6. Firewalls and IDS/IPS
- Monitor and block malicious Ethernet traffic
🔑 6. Important Ethernet Security Protocols
🔸 802.1X (Port-Based Access Control)
- Controls who can connect to LAN
🔸 MACsec
- Provides encryption for Ethernet frames
🔸 STP Security (Spanning Tree Protection)
- Prevents network loops and attacks
🧠 7. Key Security Concepts
🔹 Switch Security
- Secure switch configuration prevents attacks
🔹 Layer 2 Security
- Ethernet security mainly focuses on Data Link Layer protection
🔹 Access Control
- Only authorized devices can access LAN
📊 8. Important Rule
🔸 Ethernet Security Principle
Secure Switch Ports + Authentication + Encryption = Safe Ethernet Network
🖼️ 9. Diagram Descriptions
📌 Normal Ethernet Network
- Devices → Switch → Communication
📌 MAC Flooding Attack
- Attacker floods switch → switch behaves like hub
📌 Port Security Setup
- Switch port → allowed MAC addresses only
📌 VLAN Segmentation
- Network divided into isolated groups
🧾 10. Real-Life Examples
- 🏢 Offices using switch port security to block unknown laptops
- 🏫 Universities using VLANs for student/staff separation
- 🌐 Data centers using MACsec encryption
- 🛡️ Companies blocking MAC spoofing attacks
📝 Likely Exam Questions
- Define Ethernet security.
- What are common Ethernet security threats?
- Explain MAC spoofing and ARP spoofing.
- What is port security in Ethernet?
- Explain IEEE 802.1X authentication.
- What is MACsec and its importance?
- Describe VLAN security.
- What is MAC flooding attack?
- How can Ethernet networks be secured?
- Write short notes on:
- Switch security
- Layer 2 attacks
- MAC filtering
📌 Quick Summary / Conclusion
- Ethernet security protects LAN networks at the Data Link Layer.
- Major threats include MAC spoofing, ARP spoofing, and sniffing.
- Security is achieved using port security, VLANs, 802.1X, and MACsec encryption.
- Proper configuration of switches is essential for protection.
👉 In short:
Ethernet security ensures safe communication in LANs by controlling access, preventing attacks, and encrypting data at the link layer.