A Verified Distance Vector Routing Protocol for Protection of Internet Infrastructure

He, Liwen

doi:10.1007/978-3-540-31957-3_55

Liwen He¹⁸

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 3421))

Included in the following conference series:

International Conference on Networking

691 Accesses
1 Citations

Abstract

The routing protocols, one of the fundamental components in the operation of the Internet, lack basic efficient and effective security schemes to prevent internal and external attacks. Existing cryptographic techniques can protect IP routing infrastructure from external attack at the expense of performance but is difficult to protect a network from internal attacks. This paper describes a novel computational method for verifying routing messages in distance vector routing protocols that can effective and efficient to protect routing protocols from internal attacks such as mis-configuration or compromise.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 84.99; Price excludes VAT (USA)

Softcover Book: USD 109.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Kumar, B.: Integration of Security in Network Routing Protocols. ACM SIGSAC Review 11(2), 18–25 (1993)
Article Google Scholar
Kumar, B., Crowcroft, J.: Integrating security in inter-domain routing protocols. Computer Communications Review 23(5) (October 1993)
Google Scholar
Smith, B., Garcia-Luna-Aceves, J.: Securiing the border gateway routing protocol. In: IEEE GLOBECOM 1996. Communications: The Key to Global Prosperity. GLOBAL INTERNET 1996. Conference Record, November 18-22, pp. 81–85. IEEE, Los Alamitos (1996)
Google Scholar
Smith, B., Murthy, S., Garcia-Luna-Aceves, J.: Securing distance-vector routing protocols. In: Proceedings of SNDSS 1997: Internet Society 1997 Symposium on Network and Distributed System Security, February 10-11, pp. 85–92. IEEE Computer. Soc. Press, Los Alamitos (1997)
Chapter Google Scholar
Smith, B., Garcia-Luna-Aceves, J.: Efficient security mechanisms for the border gateway routing protocol. Computer Communications 21(3), 203–210 (1998)
Article Google Scholar
Kent, S., Lynn, C., Mikkelson, J., Seo, K.: Secure Border Gateway Protocol (S-BGP). In: Proceedings of ISOC Network and Distributed System Security Symposium, Internet Society, Reston, VA, Feburary (2000)
Google Scholar
Murphy, S., Gudmundsson, O., Mundy, R., Wellington, B.: Retrofitting security into Internet infrastructure protocols. In: Proceedings DARPA Information Survivability Conference and Exposition. DISCEX 2000, January 25-27, vol. 1, pp. 3–17. IEEE Comput. Soc, Los Alamitos (2000)
Chapter Google Scholar
Cheung, S., Levitt, K.: Protecting Routing infrastructures from Denial of Service Using Cooperative: Intrusion Detection. In: Proceedings of the New Security Paradigms Workshop (NSPW 1997), New York, September 23-26, pp. 94–106. ACM, New York (1997)
Chapter Google Scholar
Ramakrishna, P., Maarof, M.A.: Detection and prevention of active sniffing on routing protocol. In: 2002 Student Conference on Research and Development. SCOReD2002. Proceedings. Global Research and Development in Electrical and Electronics Engineering, July 16-17, pp. 498–501. IEEE, Los Alamitos (2002)
Google Scholar
Mittal, V., Vigna, G.: Sensor-based intrusion detection for intra-domain distance-vector routing. In: Proceedings of the 9th ACM conference on Computer and communications security, Washington, DC, USA, pp. 127–137 (2002)
Google Scholar
Teoh, S., Ma, K., Wu, S., Zhao, X.: Case study: Interactive visualization for Internet security. In: VIS2002. IEEE Visualization 2002. Proceedings, October 27 - November 1, pp. 505–508. IEEE, Los Alamitos (2002)
Chapter Google Scholar
Wan, T., Kranakis, E., Oorschot, P.C.: S-RIP: A secure distance vector routing protocol. In: Jakobsson, M., Yung, M., Zhou, J. (eds.) ACNS 2004. LNCS, vol. 3089, pp. 103–119. Springer, Heidelberg (2004)
Chapter Google Scholar
Tanenbaum, A.S.: Computer Networks, 3rd edn. Prentice-Hall Inc., Englewood Cliffs (1996)
Google Scholar
SSFnet, I.P.: network simulation tool: http://www.ssfnet.org/internetPage.html#ssfnet

Download references

Author information

Authors and Affiliations

Security Research Centre, BT Group CTO Office, PP4, ADMIN 2, Antares Building, BT Adastral Park, Ipswich, IP5 3RE, United Kingdom
Liwen He

Authors

Liwen He
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

IUT, University of Haute Alsace, 34, rue du Grillenbreit, 68008, Colmar, France
Pascal Lorenz
Cisco Systems, Inc., 10 West Tasman Drive, Bldg O/2, 95134, San Jose, CA, USA
Petre Dini

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

He, L. (2005). A Verified Distance Vector Routing Protocol for Protection of Internet Infrastructure. In: Lorenz, P., Dini, P. (eds) Networking - ICN 2005. ICN 2005. Lecture Notes in Computer Science, vol 3421. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-31957-3_55

Download citation

DOI: https://doi.org/10.1007/978-3-540-31957-3_55
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-25338-9
Online ISBN: 978-3-540-31957-3
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics