CoISM: Improving Security and Accuracy of BGP through Information Sharing

Ensuring the authenticity of BGP routing information is a challenge problem of Inter-domain routing security. Due to lack of global information view, is it difficult to single autonomous system to detect bogus BGP routing information. A method for cooperative BGP validation based on self-organizing information sharing is presented in this paper. Cooperative validation gives a more comprehensive route view by sharing information among autonomous systems. It loosens the constraints from the autonomy and improves the security and accuracy of BGP. By leveraging the characteristics of locality and relativity, which is caused by routing policy, cooperative validation drives autonomous systems to cooperate independently and share information on-demand. More specifically, our method has incentive effect and supports incremental deployment.

[1]  Lixia Zhang,et al.  BGPmon: A Real-Time, Scalable, Extensible Monitoring System , 2009, 2009 Cybersecurity Applications & Technology Conference for Homeland Security.

[2]  Christos Faloutsos,et al.  Epidemic thresholds in real networks , 2008, TSEC.

[3]  J. Rexford,et al.  A distributed reputation approach to cooperative Internet routing protection , 2005, 1st IEEE ICNP Workshop on Secure Network Protocols, 2005. (NPSec)..

[4]  Sandra L. Murphy,et al.  BGP Security Vulnerabilities Analysis , 2006, RFC.

[5]  Constantinos Dovrolis,et al.  Beware of BGP attacks , 2004, CCRV.

[6]  Patrick D. McDaniel,et al.  A Survey of BGP Security Issues and Solutions , 2010, Proceedings of the IEEE.

[7]  Michalis Faloutsos,et al.  Analyzing BGP policies: methodology and tool , 2004, IEEE INFOCOM 2004.

[8]  Stephen T. Kent,et al.  Secure Border Gateway Protocol (S-BGP) , 2000, IEEE Journal on Selected Areas in Communications.

[9]  Evangelos Kranakis,et al.  On interdomain routing security and pretty secure BGP (psBGP) , 2007, TSEC.