Title :
A Security Scheme of BGP Base on Aggregate Signatures Algorithm
Author :
Zhang Jian-hui ; Wang Su-nan ; Wang Bin ; Wang Bin-qiang
Author_Institution :
Nat. Digital Switching Syst. Eng. & Technol. R&D Center, Zhengzhou, China
Abstract :
The Border Gateway Protocol (BGP), which is used to distribute routing information between autonomous systems, is an important component of the Internet´s routing infrastructure. However, due to the lack of the mechanism the BGP is highly vulnerable to a variety of attacks. Many solutions have been proposed by some corporations or individual. But the current propositions either were difficult in operation, or lacked the sufficient security guarantee. In the paper, a security scheme of BGP is proposed, which adopts identity-based cryptography and aggregate signatures algorithm for verifying the propriety of IP prefix origination and verify the validity of an AS to announce Network Information (NLRI). Compared with S-BGP, the scheme can efficient reduce BGP router´s process load and more easily deployed across Internet.
Keywords :
Internet; cryptography; digital signatures; routing protocols; BGP base security scheme; IP prefix origination; Internet routing; aggregate signatures algorithm; border gateway protocol; identity-based cryptography; network layer reachability information; Aggregates; Cryptographic protocols; Elliptic curve cryptography; Identity-based encryption; Information security; Internet; National security; Public key; Public key cryptography; Routing protocols; Aggregate signatures algorithm; Border Gateway Protocol; Identity-based cryptography; Routing security;
Conference_Titel :
Multimedia Information Networking and Security, 2009. MINES '09. International Conference on
Conference_Location :
Hubei
Print_ISBN :
978-0-7695-3843-3
Electronic_ISBN :
978-1-4244-5068-8
DOI :
10.1109/MINES.2009.211
