IBAPV: An Identity-Based Aggregate Path Verification Protocol for Securing BGP
The paper proposes an Identity-Based Aggregate Path Verification protocol (IBAPV) to provide authenticity for route announcements in the Border Gateway Protocol (BGP) with a more efficient and easily deployed identity-based aggregate signature scheme instead of certificate-based scheme, which leads to performance and deployment matters of current proposals. Because in the identity-based cryptographic scheme, private key generator has the knowledge about the system master key and private keys of all users in the system, which is greatly risky in the real world, a Distributed and Hierarchical Key Issuing protocol (DHKI) is proposed to hold the privacy of these secrets in IBAPV. Compared with S-BGP, IBAPV simplifies key management process, consumes lesser memory and has shorter update message. Our simulation result indicates that convergence time of IBAPV with hardware implementation approximates BGP.
BGP Interdomain routing identity-based cryptography security
Na Wang Yingjian Zhi Binqiang Wang
PLA Information Engineering University Zhengzhou,China
国际会议
广州
英文
2008-11-19(万方平台首次上网日期,不代表论文的发表时间)