A survey on the recent efforts of the Internet Standardization Body for securing inter-domain routing

Siddiqui, Muhammad Shuaib; Montero, Diego; Serral-Gracià, R.; Masip-Bruin, X.; Yannuzzi, M.

doi:10.1016/j.comnet.2015.01.017

Cited by 13 publications

(9 citation statements)

References 80 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…BGP vulnerabilities and hijacks have been studied for a long time [10,13,36,37,52]. However, proposals to secure BGP have not gained widespread traction.…”

Section: Related Workmentioning

confidence: 99%

Profiling BGP Serial Hijackers

Testart

Richter

King

et al. 2019

Proceedings of the Internet Measurement Conference

View full text Add to dashboard Cite

BGP hijacks remain an acute problem in today's Internet, with widespread consequences. While hijack detection systems are readily available, they typically rely on a priori prefix-ownership information and are reactive in nature. In this work, we take on a new perspective on BGP hijacking activity: we introduce and track the long-term routing behavior of serial hijackers, networks that repeatedly hijack address blocks for malicious purposes, often over the course of many months or even years. Based on a ground truth dataset that we construct by extracting information from network operator mailing lists, we illuminate the dominant routing characteristics of serial hijackers, and how they differ from legitimate networks. We then distill features that can capture these behavioral differences and train a machine learning model to automatically identify Autonomous Systems (ASes) that exhibit characteristics similar to serial hijackers. Our classifier identifies ≈ 900 ASes with similar behavior in the global IPv4 routing table. We analyze and categorize these networks, finding a wide range of indicators of malicious activity, misconfiguration, as well as benign hijacking activity. Our work presents a solid first step towards identifying and understanding this important category of networks, which can aid network operators in taking proactive measures to defend themselves against prefix hijacking and serve as input for current and future detection systems. CCS CONCEPTS • Networks → Network measurement; Network security.

show abstract

“…BGP vulnerabilities and hijacks have been studied for a long time [10,13,36,37,52]. However, proposals to secure BGP have not gained widespread traction.…”

Section: Related Workmentioning

confidence: 99%

Profiling BGP Serial Hijackers

Testart

Richter

King

et al. 2019

Proceedings of the Internet Measurement Conference

View full text Add to dashboard Cite

show abstract

“…While we still describe some early approaches also covered by [22,24,25], we use them as a baseline to show the reader how each group of BGP security solutions has evolved in recent decades. Recently, Siddiqui et al [26] and Al-Musawi et al [28] also presented surveys on BGP security. Contrary to our work, they either reviewed the standardization efforts made by the IETF SIDR WG only or focused on detection techniques and completely ignored BGP security proposals.…”

Section: Bgp Security Enhancementsmentioning

confidence: 99%

“…Recently, Siddiqui et al [26] reviewed the standardization efforts made by the IETF Secure Inter-Domain Routing Working Group (SIDR WG) to secure BGP, but focused on two major security extensions only. Cardona et al [27] focused on contributions intended to improve only the availability of BGP networks.…”

Section: Introductionmentioning

confidence: 99%

The state of affairs in BGP security: A survey of attacks and defenses

Mitseva

Panchenko

Engel

2018

Computer Communications

View full text Add to dashboard Cite

The Border Gateway Protocol (BGP) is the de facto standard interdomain routing protocol. Despite its critical role on the Internet, it does not provide any security guarantees. In response to this, a large amount of research has proposed a wide variety BGP security extensions and detection-recovery systems in recent decades. Nevertheless, BGP remains vulnerable to many types of attack. In this work, we conduct an up-to-date review of fundamental BGP threats and present a methodology for evaluation of existing BGP security proposals. Based on this, we introduce a comprehensive and up-to-date survey of proposals intended to make BGP secure and methods for detection and mitigation of routing instabilities. Last but not least, we identify gaps in research, and pinpoint open issues and unsolved challenges.

show abstract

“…One of the most crucial problems is securing inter-domain routing [17][18][19]. The BGP security problem has been emphasized by many notable attacks and configuration errors (e.g., [1][2][3]).…”

Section: Introductionmentioning

confidence: 99%

BGPcoin: Blockchain-Based Internet Number Resource Authority and BGP Security Solution

Xing

Wang

2018

Symmetry

View full text Add to dashboard Cite

Without the design for inherent security, the Border Gateway Protocol (BGP) is vulnerable to prefix/subprefix hijacks and other attacks. Though many BGP security approaches have been proposed to prevent or detect such attacks, the unsatisfactory cost-effectiveness frustrates their deployment. In fact, the currently deployed BGP security infrastructure leaves the chance for potential centralized authority misconfiguration and abuse. It actually becomes the critical yield point that demands the logging and auditing of misbehaviors and attacks in BGP security deployments. We propose a blockchain-based Internet number resource authority and trustworthy management solution, named BGPcoin, to facilitate the transparency of BGP security. BGPcoin provides a reliable origin advertisement source for origin authentication by dispensing resource allocations and revocations compliantly against IP prefix hijacking. We perform and audit resource assignments on the tamper-resistant Ethereum blockchain by means of a set of smart contracts, which also interact as one to provide the trustworthy origin route examination for BGP. Compared with RPKI, BGPcoin yields significant benefits in securing origin advertisement and building a dependable infrastructure for the object repository. We demonstrate it through an Ethereum prototype implementation, and we deploy it and do experiment on a locally-simulated network and an official Ethereum test network respectively. The extensive experiment and evaluation demonstrate the incentives to deploy BGPcoin, and the enhanced security provided by BGPcoin is technically and economically feasible.

show abstract

A survey on the recent efforts of the Internet Standardization Body for securing inter-domain routing

Cited by 13 publications

References 80 publications

Profiling BGP Serial Hijackers

Profiling BGP Serial Hijackers

The state of affairs in BGP security: A survey of attacks and defenses

BGPcoin: Blockchain-Based Internet Number Resource Authority and BGP Security Solution

Contact Info

Product

Resources

About