Title :
Fatih: detecting and isolating malicious routers
Author :
Mizrak, Alper Tugay ; Cheng, Yu-Chung ; Marzullo, Keith ; Savage, Stefan
Author_Institution :
Dept. of Comput. Sci. & Eng., California Univ., San Diego, CA, USA
fDate :
28 June-1 July 2005
Abstract :
Network routers occupy a key role in modern data transport and consequently are attractive targets for attackers. By manipulating, diverting or dropping packets arriving at a compromised router, an attacker can trivially mount denial-of-service, surveillance or man-in-the-middle attacks on end host systems. In this paper, we specify the problem of detecting routers with incorrect packet forwarding behavior and we explore the design space of protocols that implement such a detector. We further present a concrete protocol that is inexpensive enough for practical implementation at scale.
Keywords :
protocols; telecommunication network routing; telecommunication security; denial-of-service; malicious router detection; malicious router isolation; man-in-the-middle attacks; network routers; packet forwarding behavior; protocols; surveillance; Computer crime; Computer science; Data engineering; Delay; Detectors; Monitoring; Protocols; Space exploration; Surveillance; Telecommunication traffic;
Conference_Titel :
Dependable Systems and Networks, 2005. DSN 2005. Proceedings. International Conference on
Print_ISBN :
0-7695-2282-3
DOI :
10.1109/DSN.2005.49
