• DocumentCode
    775932
  • Title

    Study of BGP Peering Session Attacks and Their Impacts on Routing Performance

  • Author

    Sriram, Kotikalapudi ; Montgomery, Doug ; Borchert, Oliver ; Kim, Okhee ; Kuhn, D. Richard

  • Author_Institution
    Nat. Inst. of Stand. & Technol., Gaithersburg, MD
  • Volume
    24
  • Issue
    10
  • fYear
    2006
  • Firstpage
    1901
  • Lastpage
    1915
  • Abstract
    We present a detailed study of the potential impact of border gateway protocol peering session attacks and the resulting exploitation of route flap damping (RFD) that cause network-wide routing disruptions. We consider canonical grid as well as down-sampled realistic autonomous system (AS) topologies and address the impact of various typical service provider routing policies. Our modeling focuses on three dimensions of routing performance sensitivity: 1) protocol aware attacks (e.g., tuned to RFD); 2) route selection policy; and 3) attack-region topology. Analytical results provide insights into the nature of the problem and potential impact of the attacks. Detailed packet-level simulation results complement the analytical models and provide many additional insights into specific protocol interactions and timing issues. Finally, we quantify the potential effect of the BGP graceful restart mechanism as a partial mitigation of the BGP vulnerability to peering session attacks
  • Keywords
    internetworking; routing protocols; telecommunication network topology; telecommunication security; BGP peering session attack; RFD; border gateway protocol; canonical grid; down-sampled realistic autonomous system topology; network-wide routing disruption; route flap damping; sensitivity; vulnerability; Analytical models; Damping; Internet; Large-scale systems; NIST; Power system faults; Power system protection; Routing protocols; Security; Topology; BGP graceful restart; BGP security; Border gateway protocol (BGP); Internet routing protocol security; performance modeling; realistic topology; route flap damping (RFD); routing policy;
  • fLanguage
    English
  • Journal_Title
    Selected Areas in Communications, IEEE Journal on
  • Publisher
    ieee
  • ISSN
    0733-8716
  • Type

    jour

  • DOI
    10.1109/JSAC.2006.877218
  • Filename
    1705621