skip to main content
10.1145/1364654.1364715acmconferencesArticle/Chapter ViewAbstractPublication PagesconextConference Proceedingsconference-collections
research-article

Securing BGP incrementally

Published: 10 December 2007 Publication History

Abstract

Despite the pressing need to secure routing, none of the existing secure variants of BGP has been widely deployed. Due to the size and decentralized nature of the Internet, it became clear that any viable secure routing protocol must offer benefits also in its early stages of deployment. In order to determine when the protocols are not adoptable, we quantify the benefits offered by a partial deployment of an Idealized Secure BGP which is able to detect malicious routes with perfect accuracy. We also quantify the benefits of an imperfect version of the protocol. Subsequently, we conclude that even the best protocols which simply detect and avoid bogus routes do not offer good security performance except in limited scenarios. We offer alternative designs, and hope that our insights will result in a new secure routing protocol that will be more attractive to early adopters.

References

[1]
BSIM simulator: http://cs.unm.edu/~karlinjf.
[2]
University of Oregon Route Views project.
[3]
D. Andersen, H. Balakrishnan, M. Kaashoek, and R. Morris. Resilient overlay networks. In 18th ACM SOSP, October 2001.
[4]
J. Karlin, J. Rexford, and S. Forrest. Pretty good BGP: Improving BGP by cautiously adopting routes. In 14th IEEE ICNP, 2006.
[5]
L. Subramanian, V. Roth, I. Stoica, S. Shenker, and R. Katz. Listen and whisper: Security mechanisms for BGP. In Proc. of USENIX/ACM NSDI, 2004.
[6]
R. White. Securing BGP through secure origin BGP. Tech. report, Cisco Internet Protocol Journal, 2003.
[7]
D. Zhu, M. Gritter, and D. Cheriton. Feedback based routing. In HotNets, October 2002.

Cited By

View all
  • (2016)Does scale, size, and locality matter? Evaluation of collaborative BGP security mechanisms2016 IFIP Networking Conference (IFIP Networking) and Workshops10.1109/IFIPNetworking.2016.7497237(261-269)Online publication date: May-2016
  • (2015)A survey on the recent efforts of the Internet Standardization Body for securing inter-domain routingComputer Networks: The International Journal of Computer and Telecommunications Networking10.1016/j.comnet.2015.01.01780:C(1-26)Online publication date: 7-Apr-2015
  • (2014)Diagnosis of route leaks among autonomous systems in the Internet2014 International Conference on Smart Communications in Network Technologies (SaCoNeT)10.1109/SaCoNeT.2014.6867765(1-6)Online publication date: Jun-2014
  • Show More Cited By

Recommendations

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences
CoNEXT '07: Proceedings of the 2007 ACM CoNEXT conference
December 2007
448 pages
ISBN:9781595937704
DOI:10.1145/1364654
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 10 December 2007

Permissions

Request permissions for this article.

Check for updates

Qualifiers

  • Research-article

Acceptance Rates

Overall Acceptance Rate 198 of 789 submissions, 25%

Contributors

Other Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

  • Downloads (Last 12 months)1
  • Downloads (Last 6 weeks)0
Reflects downloads up to 14 Feb 2025

Other Metrics

Citations

Cited By

View all
  • (2016)Does scale, size, and locality matter? Evaluation of collaborative BGP security mechanisms2016 IFIP Networking Conference (IFIP Networking) and Workshops10.1109/IFIPNetworking.2016.7497237(261-269)Online publication date: May-2016
  • (2015)A survey on the recent efforts of the Internet Standardization Body for securing inter-domain routingComputer Networks: The International Journal of Computer and Telecommunications Networking10.1016/j.comnet.2015.01.01780:C(1-26)Online publication date: 7-Apr-2015
  • (2014)Diagnosis of route leaks among autonomous systems in the Internet2014 International Conference on Smart Communications in Network Technologies (SaCoNeT)10.1109/SaCoNeT.2014.6867765(1-6)Online publication date: Jun-2014
  • (2014)Incremental Deployment Strategies for Effective Detection and Prevention of BGP Origin HijacksProceedings of the 2014 IEEE 34th International Conference on Distributed Computing Systems10.1109/ICDCS.2014.74(670-679)Online publication date: 30-Jun-2014
  • (2011)Securing BGP — A Literature SurveyIEEE Communications Surveys & Tutorials10.1109/SURV.2011.041010.0004113:2(199-222)Online publication date: 2011

View Options

Login options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Figures

Tables

Media

Share

Share

Share this Publication link

Share on social media