Skip to Main Content
As the most crucial Inter-domain protocol in the Internet, BGP undertakes indispensable responsibility in exchanging routing information across multi-domain networks, consequently it becomes one of the focuses for network attackers. Though there has been existed various schemes to solve the troublesome thing, no one can indeed become the final solution used in real life. As the earliest and comprehensive solution, S-BGP is always a hot topic in all of countermeasures against BGP attacks. Having analyzed the inadequacy of S-BGP, this paper proposes a method of secure AS_PATH - SAP, which can simplify route validation process, reduce the computational overhead and storage. Basis on three components -- Key generator (KG), Trustworthy Node (TN) and Evaluation Mechanism (EM) the essay specifies the principle of SAP. Finally, this paper gives comparison of these two methods and shows a better scenario.
Date of Conference: 2-4 Nov. 2012