A Security Scheme of BGP Base on Aggregate Signatures Algorithm

Author

Zhang Jian-hui ; Wang Su-nan ; Wang Bin ; Wang Bin-qiang

Author_Institution

Nat. Digital Switching Syst. Eng. & Technol. R&D Center, Zhengzhou, China

Volume

2

fYear

2009

fDate

18-20 Nov. 2009

Firstpage

434

Lastpage

437

Abstract

The Border Gateway Protocol (BGP), which is used to distribute routing information between autonomous systems, is an important component of the Internet´s routing infrastructure. However, due to the lack of the mechanism the BGP is highly vulnerable to a variety of attacks. Many solutions have been proposed by some corporations or individual. But the current propositions either were difficult in operation, or lacked the sufficient security guarantee. In the paper, a security scheme of BGP is proposed, which adopts identity-based cryptography and aggregate signatures algorithm for verifying the propriety of IP prefix origination and verify the validity of an AS to announce Network Information (NLRI). Compared with S-BGP, the scheme can efficient reduce BGP router´s process load and more easily deployed across Internet.

Keywords

Internet; cryptography; digital signatures; routing protocols; BGP base security scheme; IP prefix origination; Internet routing; aggregate signatures algorithm; border gateway protocol; identity-based cryptography; network layer reachability information; Aggregates; Cryptographic protocols; Elliptic curve cryptography; Identity-based encryption; Information security; Internet; National security; Public key; Public key cryptography; Routing protocols; Aggregate signatures algorithm; Border Gateway Protocol; Identity-based cryptography; Routing security;

fLanguage

English

Publisher

ieee

Conference_Titel

Multimedia Information Networking and Security, 2009. MINES '09. International Conference on

Conference_Location

Hubei

Print_ISBN

978-0-7695-3843-3

Electronic_ISBN

978-1-4244-5068-8

Type

conf

DOI

10.1109/MINES.2009.211

Filename

5368867