Title :
A New Path Verification Protocol for Securing BGP
Author :
Wang, Na ; Zhi, Yingjian ; Wang, Binqiang
Author_Institution :
PLA Inf. Eng. Univ., Zhengzhou
Abstract :
The paper proposes an ID-based Aggregate Path Verification protocol (IDAPV) to provide authenticity for route announcements in the Border Gateway Protocol (BGP) with a more efficient and easily deployed ID-based aggregate signature scheme instead of certificate-based scheme, which leads to performance and deployment matters of current proposals, and a secure key issuing protocol to hold the privacy of the system master key and routerpsilas private key in IDAPV, for in the ID-based cryptographic scheme, private key generator has the knowledge about these secrets, which is greatly risky in the real world. Compared with S-BGP, IDAPV simplifies key management process, consumes lesser memory and has shorter update message. Our simulation result indicates that convergence time of IDAPV with hardware implementation approximates BGP.
Keywords :
digital signatures; internetworking; private key cryptography; protocols; telecommunication network routing; BGP security; ID-based aggregate path verification protocol; ID-based aggregate signature scheme; IDAPV; border gateway protocol; certificate-based scheme; private key generator; Aggregates; Convergence; Cryptographic protocols; Cryptography; Hardware; IEEE news; Identity-based encryption; Memory management; Privacy; Proposals;
Conference_Titel :
High Performance Computing and Communications, 2008. HPCC '08. 10th IEEE International Conference on
Conference_Location :
Dalian
Print_ISBN :
978-0-7695-3352-0
DOI :
10.1109/HPCC.2008.52
