Abstract
The Border Gateway Protocol (BGP) is a vital protocol on the Internet. However, the BGP is susceptible against the prefix interception attack, how to seek a secure route against prefix interception attacks is an important problem. For this reason, we propose a novel and effective router selection method on the Internet. First, we evaluate resilience of autonomous systems against prefix interception attacks. Second, we evaluate security risk of next-hop routers and we also obtain the historical performance of next-hop routers via online learning. Finally, we compromise the two performance metrics of routers’ resilience and historical performance to choose a secure route. Our method is verified by network simulations. The results show that the proposed method has more resilience against prefix interception attacks.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Ballani, H., Francis, P., Zhang, X.: A study of prefix hijacking and interception in the internet. In: Proceedings of the ACM SIGCOMM 2007 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communications, pp. 265–276 (2007)
Lad, M., Oliveira, R., Zhang, B., Zhang, L.: Understanding resiliency of Internet topology against prefix hijack attacks. In: The 37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, pp. 368–377 (2007)
Huston, G., Michaelson, G.: Validation of Route Origination Using the Resource Certificate Public Key Infrastructure and Route Origin Authorizations (2012). https://www.tools.ietf.org/html/rfc6483
Bellovin, S.M., Bush, R., Ward, D.: Security requirements for BGP path validation (2011). http://tools.ietf.org/html/draft-ymbk-bgpsec-reqs-02
Johann, S., Ralph, H., Quentin, J., Georg, C., Ernst, B.W.: HEAP: reliable assessment of BGP hijacking attacks. IEEE J. Sel. Areas Commun. 34, 1849–1861 (2016)
Rahul, H., Niklas, C., Nahid, S.: Collaborative framework for protection against attacks targeting BGP and edge networks. Comput. Netw. 122, 120–137 (2017)
Shi, X., Xiang, Y., Wang, Z., Yin, X., Wu, J.: Detecting prefix hijackings in the Internet with argus. In: Proceedings of the 12th ACM SIGCOMM Internet Measurement Conference (2012)
Zhang, Z., Zhang, Y., Mao, H.Y.C., Morley, Z., Randy, B.: ISPY: detecting IP prefix hijacking on my own. IEEE/ACM Trans. Netw. 6, 1815–1828 (2010)
Sun, Y., Anne, E., Nick, F., Mung, C., Prateek, M.: Counter-RAPTOR: safeguarding Tor against active routing attacks. In: 2017 IEEE Symposium on Security and Privacy (2017)
Gao, L., Rexford, J.: Stable Internet routing without global coordination. IEEE/ACM Trans. Netw. 9, 681–692 (2001)
Elad, H.: Introduction to online convex optimization. The Computing Research Repository (2019)
Li, B., Chen, T., Giannakis, G.B.: Secure mobile edge computing in IoT via collaborative online learning. The Computing Research Repository (2018)
Acknowledgment
This work was supported in part by the National Natural Science Foundation of China (NSFC) under Grants No. 61602155, No. U1604155, and No. 61871430, and in part by the basic research projects in the University of Henan Province under Grants No. 19zx010, and in part by the Science and Technology Development Programs of Henan Province under Grant No. 192102210284.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Switzerland AG
About this paper
Cite this paper
Meng, M., Zheng, R., Zhang, M., Zhu, J., Wu, Q. (2020). Safeguarding Against Active Routing Attack via Online Learning. In: Wen, S., Zomaya, A., Yang, L.T. (eds) Algorithms and Architectures for Parallel Processing. ICA3PP 2019. Lecture Notes in Computer Science(), vol 11945. Springer, Cham. https://doi.org/10.1007/978-3-030-38961-1_12
Download citation
DOI: https://doi.org/10.1007/978-3-030-38961-1_12
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-38960-4
Online ISBN: 978-3-030-38961-1
eBook Packages: Computer ScienceComputer Science (R0)