A security analyst observes a network attack where an attacker sends forged ARP messages to associate the attacker's MAC address with the IP address of the default gateway. This attack occurs at which layer of the OSI model?
Trap 1: Layer 3 – Network
Network layer handles routing and IP addressing; ARP is not at Layer 3.
Trap 2: Layer 1 – Physical
Physical layer deals with raw bit transmission over physical media.
Trap 3: Layer 4 – Transport
Transport layer manages end-to-end connections and data flow.
- A
Layer 3 – Network
Why wrong: Network layer handles routing and IP addressing; ARP is not at Layer 3.
- B
Layer 1 – Physical
Why wrong: Physical layer deals with raw bit transmission over physical media.
- C
Layer 4 – Transport
Why wrong: Transport layer manages end-to-end connections and data flow.
- D
Layer 2 – Data Link
ARP operates at Layer 2, and ARP spoofing manipulates MAC-to-IP mappings.