Title :
An Integrated Solution to Protect Link State Routing against Faulty Intermediate Routers
Author :
Huang, He ; Wu, Shyhtsun Felix
Author_Institution :
Nortel, Chapel Hill, NC
Abstract :
The importance of the routers in the network and the vulnerability in the nature of the link state routing protocol highlight the necessity of effective routing protection against variant attacks. One of the severe attacks is from the faulty intermediate router (FIR) which intentionally compromises the LSA messages passing by and pollutes the routing tables of its downstream routers. Current security mechanisms are either too expensive or vulnerable to prevent this type of inside attack. To address the FIR attack, in this paper, we present a novel cost-reduced integrated solution which combines both fault-detection operations from routers and fault-tracing response from network management components. The significant properties of our system are the detectability of the abnormal behavior toward the LSAs and the traceability of the FIRs generating those bogus LSAs. The analysis of the memory requirement and the communication cost in our design demonstrate the feasibility and efficiency of our system
Keywords :
routing protocols; telecommunication links; telecommunication network reliability; telecommunication security; downstream routers; fault-detection operations; fault-tracing response; faulty intermediate routers; link state routing protocol; routing protection; security mechanisms; Protection; Routing; confidence value; fault detection; fault tracing; faulty intermediate router;
Conference_Titel :
Network Operations and Management Symposium, 2006. NOMS 2006. 10th IEEE/IFIP
Conference_Location :
Vancouver, BC
Print_ISBN :
1-4244-0142-9
DOI :
10.1109/NOMS.2006.1687571