Securing the Border Gateway Routing Protocol

Abstract

We analyze the security of the BGP routing protocol, and identify a number of vulnerabilities in its design and the corresponding threats. We then present a set of proposed modifications to the protocol which minimize or eliminate the most significant threats. The innovation we introduce is the protection of the second-to-last information contained in the AS PATH attributes by digital signatures, and the use of techniques developed for detecting loops in path-finding protocols to verify the selected route's path information. With these techniques we are able to secure full path information in near constant space, and avoid the recursive protection mechanisms previously assumed necessary.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 1996
Accession Number
ADA461684

Entities

People

  • Bradley R. Smith
  • J. J. Garcia-lunes-aceves

Organizations

  • University of California, Santa Cruz

Tags

Communities of Interest

  • Ground and Sea Platforms
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Computer Networks
  • Computers
  • Computing System Architectures
  • Digital Communications
  • Electronic Mail
  • Electronic Messaging
  • Internet Routing
  • Network Computing
  • Network Protocols
  • Network Science
  • Routing Protocols
  • Transport Protocols
  • Voice Over Internet Protocol
  • Wireless Networks

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Systems Analysis and Design

Technology Areas

  • Cyber
  • Space
  • Space - Spacecraft Maneuvers