Majid Estilayee - Technical and Engineering, Payam-e Nour, Tehran, Iran,
Ali Naserasadi - Computer Group, Zarand Higher Education Complex, Kerman, Iran,

In cryptography and information security, a Man-in-the-middle attack is an attack where an attacker relies himself between the two parties of a communication and secretly starts to listen or even alter information in this communication while the legal parties couldn’t notice anything about the attacker and believe they are securely communicating with each other. This is an old attack but it still could be found among new technologies and communication channels. In this paper, at first, we have defined man-in-the-middle attack and then we have done a survey on presence of this kind of attack through new technologies. Then, we have studied some different popular new communication technologies and protocols to check whether they are secure against man-in-the-middle attack or not. At the end, we proposed a method for detecting and preventing this attack in the network communications.

Man-in-the-middle Attack, HTTP, HTTPS, ARP