Title :
Reputation Mechanism for Inter-domain Routing Security Management
Author :
Hu, Ning ; Zhu, Peidong ; Zou, Peng
Author_Institution :
Comput. Sch., Nat. Univ. of Defense Technol., Changsha, China
Abstract :
Inter-domain routing system is the critical infrastructure of Internet. Make sure that autonomous system (AS) announces and prefers authentic routing information is very important to the security of inter-domain routing system. Due to BGP´s opaqueness and AS´s autonomy, it is difficult for AS to identify whether an incoming BGP route is valid. We design a reputation mechanism based on Bayesian probability theory to evaluate the trustworthiness of AS. The mechanism takes in the statistical results on routing trustworthiness published by AS, employs posterior probability analysis, and finally calculates a reputation score for a particular AS. Our proposal makes existing route monitoring and analysis tool more effective. Combining with routing decision, reputation mechanism can restrain the propagation of bogus routing information and improve the overall security situation of inter-domain routing system. Our mechanism makes no changes to BGP protocol and supports incremental deployment.
Keywords :
Bayes methods; Internet; computer network management; routing protocols; Bayesian probability theory; Internet; authentic routing information; autonomous system; border gateway routing protocol; interdomain routing security management; interdomain routing system; posterior probability analysis; reputation mechanism; route analysis tool; route monitoring tool; routing decision; routing trustworthiness; Computer security; Conference management; Cryptography; Information security; Information technology; Internet; Monitoring; National security; Probability; Routing protocols; BGP; inter-domain Routing; reputation; security;
Conference_Titel :
Computer and Information Technology, 2009. CIT '09. Ninth IEEE International Conference on
Conference_Location :
Xiamen
Print_ISBN :
978-0-7695-3836-5
DOI :
10.1109/CIT.2009.123
