BGP Extension to Support Inter-Domain Distributed Packets Filtering
作者: WU Jian-Ping , Xu Ke , Wang Li-Jun
DOI:
关键词:
摘要: To be trustworthy is an important characteristic of the next generation Internet. The routing system present Internet forwards packets only according to destination IP address. Forged with spoofed source address will also forwarded destination, which impairs security receiver and conceals real identity sender. requires not forward correctly, but validate from Inter-domain distributed packet filtering effective method filter out packets. This paper proposes extend BGP route selection notice provide criteria. With support, border routers can incoming form false autonomous systems. Simulation result indicates does impair function BGP, both proper design acceptable bandwidth cost fast convergence may achieved simultaneously.
参考文章(17)
J. Chandrashokar, Zhenhai Duan, Zhi-Li Zhang, J. Krasky, Limiting path exploration in BGP international conference on computer communications. ,vol. 4, pp. 2337- 2348 ,(2005) , 10.1109/INFCOM.2005.1498520
R. Chandra, C. Villamizar, R. Govindan, BGP Route Flap Damping BGP Route Flap Damping. ,vol. 2439, pp. 1- 37 ,(1998)
D. Senie, P. Ferguson, Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing RFC 2827-BCP 38. ,vol. 2267, pp. 1- 10 ,(1998)
R. Chandra, Y. Rekhter, T. Bates, D. Katz, Multiprotocol Extensions for BGP-4 RFC 2858. ,vol. 2283, pp. 1- 11 ,(1998)
A. Bremler-Barr, H. Levy, Spoofing prevention method international conference on computer communications. ,vol. 1, pp. 536- 547 ,(2005) , 10.1109/INFCOM.2005.1497921
Stefan Savage, David Wetherall, Anna Karlin, Tom Anderson, Practical network support for IP traceback acm special interest group on data communication. ,vol. 30, pp. 295- 306 ,(2000) , 10.1145/347057.347560
Michalis Faloutsos, Petros Faloutsos, Christos Faloutsos, On power-law relationships of the Internet topology acm special interest group on data communication. ,vol. 29, pp. 251- 262 ,(1999) , 10.1145/316188.316229
Y. Afek, A. Bremler-Barr, S. Schwarz, Improved BGP convergence via ghost flushing IEEE Journal on Selected Areas in Communications. ,vol. 22, pp. 1933- 1948 ,(2004) , 10.1109/JSAC.2004.836002
Lixin Gao, J. Rexford, Stable internet routing without global coordination IEEE ACM Transactions on Networking. ,vol. 9, pp. 681- 692 ,(2001) , 10.1109/90.974523
A.C. Snoeren, C. Partridge, L.A. Sanchez, C.E. Jones, F. Tchakountio, B. Schwartz, S.T. Kent, W.T. Strayer, Single-packet IP traceback IEEE ACM Transactions on Networking. ,vol. 10, pp. 721- 734 ,(2002) , 10.1109/TNET.2002.804827