A cryptographic protocol to protect MPLS labels

Author

Barlow, David A. ; Vassiliou, Vasos ; Owen, Henry L.

Author_Institution

Dept. of Electr. Eng. & Comput. Sci., US Mil. Acad., West Point, NY, USA

fYear

2003

fDate

18-20 June 2003

Firstpage

237

Lastpage

242

Abstract

We have designed a cryptographic protocol to protect the Multiprotocol Label Switching (MPLS) header used in an Internet service provider (ISP) network. This protocol protects the MPLS header primarily against tampering for purposes of hijacking ISP resources. Secondary goals are protection against replay attack and traffic analysis of ISP traffic. The protocol is fast so as to minimize delay introduced into the high-speed MPLS routers. We use the Blowfish encryption algorithm in our encryption system, and smart cards and the Diffie-Hellman protocol in our key distribution system.

Keywords

Internet; computer crime; cryptography; message authentication; multiprotocol label switching; smart cards; telecommunication network routing; telecommunication security; telecommunication traffic; Blowfish encryption algorithm; Diffie-Hellman protocol; ISP network; ISP resources hijacking; ISP traffic analysis; Internet Service Provider network; MPLS header protection; Multiprotocol Label Switching; cryptographic protocol; delay minimization; encryption system; high-speed MPLS router; key distribution system; replay attack; smart cards; tampering; Authentication; Cryptographic protocols; Cryptography; Delay; IP networks; Multiprotocol label switching; Protection; Routing; Telecommunication traffic; Web and internet services;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Assurance Workshop, 2003. IEEE Systems, Man and Cybernetics Society

Print_ISBN

0-7803-7808-3

Type

conf

DOI

10.1109/SMCSIA.2003.1232428

Filename

1232428