An Operational Approach to Validate the Path of BGP

Li, Ping; Zhou, Wanlei; Li, Ke

doi:10.1007/978-3-540-69501-1_15

Ping Li¹,
Wanlei Zhou¹ &
Ke Li¹

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 5022))

Included in the following conference series:

International Conference on Algorithms and Architectures for Parallel Processing

691 Accesses
1 Citations

Abstract

BGP (Border Gateway Protocol) is a fundamental component of the current Internet infrastructure. However, BGP is vulnerable to a variety of attacks, since it cannot ensure the authenticity of the path attributes announced by BGP routers. Despite several solutions have been proposed to address this vulnerability, none of them is operational in real-world due to their immense impact on original BGP. In this paper, we propose a Deployable Path Validation Authentication scheme, which can effectively validate the path of BGP. Through analysis and simulation we show that this scheme has little impact on the performance and memory usage for the original BGP, and can be adopted in practice as an operational approach.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Rekhter, Y., Li, T., Hares, S.: A Border Gateway Protocol 4 (BGP-4), RFC4271
Google Scholar
Lynn, C., Seo, K.: Secure BGP (S-BGP), http://www.ir.bbn.com/sbgp/draft-clynn-s-bgp-protocol-01.txt
White, R.: Architecture and Deployment Considerations for Secure Origin BGP (soBGP), http://tools.ietf.org/html/draft-white-sobgp-architecture-01
Bates, T., Rekhter, Y., Chandra, R., Katz, D.: Multiprotocol Extensions for BGP-4, RFC 2858
Google Scholar
Murphy, S.: BGP Security Vulnerabilities Analysis, RFC 4272
Google Scholar
Nicol, D.M., Smith, S.W., Zhao, M.: Evaluation of Efficient Security for BGP Route Announcements using Parallel Simulation. J. Simulation Practice and Theory 12, 187–216 (2004)
Article Google Scholar
Hu, Y.-C., Perrig, A., Sirbu, M.: SPV: Secure Path Vector Routing for Securing BGP. In: SIGCOMM 2004, pp. 179–192. ACM Press (2004)
Google Scholar
Achieve Optimal Routing and Reduce BGP Memory Consumption, http://www.cisco.com/warp/public/459/41.shtml

Download references

Author information

Authors and Affiliations

School of Engineering and Information Technology, Deakin University, Melbourne, Australia
Ping Li, Wanlei Zhou & Ke Li

Authors

Ping Li
View author publications
You can also search for this author in PubMed Google Scholar
Wanlei Zhou
View author publications
You can also search for this author in PubMed Google Scholar
Ke Li
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Anu G. Bourgeois S. Q. Zheng

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Li, P., Zhou, W., Li, K. (2008). An Operational Approach to Validate the Path of BGP. In: Bourgeois, A.G., Zheng, S.Q. (eds) Algorithms and Architectures for Parallel Processing. ICA3PP 2008. Lecture Notes in Computer Science, vol 5022. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-69501-1_15

Download citation

DOI: https://doi.org/10.1007/978-3-540-69501-1_15
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-69500-4
Online ISBN: 978-3-540-69501-1
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics