Definition

antispoofing

Contributor(s): Sharon Shea

Antispoofing is a technique for identifying and dropping packets that have a false source address.

In a spoofing attack, the source address of an incoming packet is changed to make it appear as if it is coming from a known, trusted source. Spoofed packets are commonly used to carry out denial of service (DoS) attacks, exploit network and system vulnerabilities and gain unauthorized access to corporate networks and data.

Spoofed packets can be detected by setting up rules on a firewall, router or other network gateway that examines incoming packets. For example, if the rule is to filter out packets that have conflicting source addresses, a packet that shows a source address from the internal network will be automatically dropped because internal packets are never filtered by outside-facing interfaces.

Antispoofing, which is sometimes spelled anti-spoofing, is sometimes implemented by Internet Service Providers (ISPs) on behalf of their customers.

See also: Sender Policy Framework, Email spoofing, IP spoofing

This was last updated in July 2014

Continue Reading About antispoofing

Dig Deeper on Monitoring Network Traffic and Network Forensics

PRO+

Content

Find more PRO+ content and other member only offers, here.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close