多路径域间路由决策检测协议

M ultipath interdomain routing decision verification protocol

导出

摘要由于不同域之间的利益和安全策略存在复杂的竞争与冲突,域间路由安全问题一直具有挑战性。当前相关研究主要集中于路由源可信性与路径信息可信性等方向,但对域间路由策略实施可信性则较少关注。设计了一种多路径域间路由决策检测协议,可验证一个自治域是否遵守从N条目的地相同的候选路径中选择合适的M条路径发送往下游自治域的路由选择决策承诺。分析表明协议正确有效,同时可以抵抗伪造、篡改和重放等攻击,且具有增量部署和尊重参与者隐私的特性。 Because of complicated security policy collisions and twisted interest conflicts between different network do- mains, interdomain routing security has been one challenge of secure routing. At present most of related researches fo- cus on the authentication of routing source and true path, but seldom address another point of whether the routing deci- sion process matches expected policy. A multipath interdomain routing decision verification protocol was designed, which can check whether an AS keeps its promise about choosing appropriate M from N paths that have the same desti- nation and are received from upstream ASs, and sending to a downstream AS. According to the analysis, the protocol is valid and respects the privacy of participants, as well as can resist attacks such as forgery, tampering and replay etc. and deploy on internet incrementally.

作者邱修峰刘建伟伍前红刘建华

机构地区北京航空航天大学电子信息工程学院赣南师范学院数学与计算机系

出处《山东大学学报（理学版）》 CAS CSCD 北大核心 2013年第7期39-45,共7页 Journal of Shandong University(Natural Science)

基金国家重点基础研究发展规划项目(2012CB315905) 国家自然科学基金资助项目(61272501) 北京市自然科学基金资助项目(4132056)

关键词多路径域间路由选择决策承诺验证 multipath inter-domain routing decision promise verification

分类号 TF309 [冶金工程—冶金机械及自动化]

引文网络
相关文献

参考文献13

1GEOFF H, MATTIA R, GRENVILLE A. Securing BGP- a literature survey [ J]. IEEE Communications Surveys & Tutorials, 2011, 13(2) :199-222.
2KENT S, LYNN C, SEO K. Secure border gateway pro- tocol(S-BGP)[J]. IEEE Journal on Selected Areas in Communicatiom, 2000, 8 (4) :582-592.
3WHITE R. Architecture and deployment consider-ations for secure origin bgp (soBGP) [ EB/OL ]. (2006-06-15) [ 2013-04-25 ]. http:/tools, ietf. org/html/draft-white- sobgp-architecture-02.
4KRANAKIS EVANGELOS, VAN OORSCHOT P C, WAN Tao. On inter-domain routing security and pretty secure BGP(psBGP) [ J]. ACM Transactions on Informa- tion and System Security, 2007, 10(3) :1-41.
5ZHANG Xin, Hsiao Hsu-chun, GEOFFREY H, et al. SCION: scalability, control, and isolation on next-gener- ation networks [ C]// IEEE Symposium on Security and Privacy. Washington: IEEE Society Press, 2011: 212- 227.
6ZHAO Mingchen, ZHOU Wenchao, ALEXANDER J T, et al. Private and verifiable interdomain routing decisions [ C ]// ACM SIGCOMM. New York: ACM Press, 2012 : 383-394.
7STEPHEN K T, CHARLES L, JOANNE M, et al. Se- cure border gateway protocol (S-BGP) - real world per- formance and deployment issues[ C]// Network and Dis- tributed System Security Symposium. USA: ISOC, 2000: 103-116.
8DAVID G A, HARI B, NICK F, et al. Accountable in- ternet protocol ( AIP ) [ C ]// ACM SIGCOMM. New York: ACM Press, 2008: 339-350.
9GEOFFREY G, WILLIAM A, TIMOTHY G, et al, Working around BGP: an incremental approach to impro- ving security and accuracy of interdomain routing [ C ]// Network and Distributed System Security Symposium. USA: ISOC, 2003.
10JAD N, MICHAEL W, NICOLOSI A, et al. Verifying and enforcing network paths with icing [ C ]// ACM CoNEXT. New York: ACM Press, 2011.

1安景松,胡江.多路径生产计划校验技术的应用[J].冶金设备,2007(6):76-78.
2谢志江,张大德,欧阳奇.基于全连铸生产模式工序节奏优化的研究[J].中国机械工程,2007,18(17):2062-2065. 被引量：1
3郭天山（译）,岳喜全（校）.射流吹氧技术的创新[J].太钢译文,2006(1):22-24.
4张晓阳.企业信息安全策略[J].轻金属,2004(11):56-58. 被引量：1
5邱雪松.柳钢网络安全策略[J].柳钢科技,2004(4):35-37.
6黄海量,武殿梁,卢秉恒.基于Internet的快速成形工艺选择决策支持系统的设计与实现[J].小型微型计算机系统,2003,24(5):925-928. 被引量：1
7球团矿企业看到光明前景[J].烧结球团,2009,34(5):37-37.
82010年11月日本精炼锌出口同比减少0．5％[J].中国金属通报,2011(1):14-14.
9刘志刚.26.4mm厚规格X80HD2管线钢的开发[J].山东冶金,2015,37(6):9-13. 被引量：1
10因供应趋紧，锌精矿加工费跌至191美元/干吨[J].中国金属通报,2012(8):14-14.

山东大学学报（理学版）

2013年第7期

浏览历史

内容加载中请稍等...

多路径域间路由决策检测协议

参考文献13

相关作者

相关机构

相关主题

浏览历史