IPv4 - Security ??

This post merely tries to explain the security issues and attacks involved in the use of IPv4 standard wrt SESSION HIJACKING

• The original IPv4 standard needed to address three basic security issues - authentication, integrity and privacy.
• Authentication was an issue because an attacker could easily spoof an IP address and exploit a session.
  
• Spoofing was not restricted to IP address alone, but also extended to MAC addresses in ARP spoofing.
  
• An attacker sniffing on a network could sniff packets and carry out simple attacks such as change, delete, reroute, add, forge or divert data. Perhaps the most popular among these attacks is the Man-In-the-Middle attack.
  
• An attacker can grab unencrypted traffic from a victim's network-based TCP application, further tampering with the authenticity and integrity of the data before forwarding it on to the unsuspecting target.