A Security Scheme of BGP Base on Aggregate Signatures Algorithm
The Border Gateway Protocol (BGP), which is used to distribute routing information between autonomous systems, is an important component of the Internets routing infrastructure. However, due to the lack of the mechanism the BGP is highly vulnerable to a variety of attacks. Many solutions have been proposed by some corporations or individual. But the current propositions either were difficult in operation, or lacked the sufficient security guarantee. In the paper, a security scheme of BGP is proposed, which adopts identity-based cryptography and aggregate signatures algorithm for verifying the propriety of IP prefix origination and verify the validity of an AS to announce Network Layer Reachability Information (NLRI). Compared with S-BGP, the scheme can efficient reduce BGP routers process load and more easily deployed across Internet.
Routing security Border Gateway Protocol Identity-based cryptography Aggregate signatures algorithm
ZHANG Jian-hui WANG Su-nan WANG Bin WANG Bin-qiang
National Digital Switching System Engineering&Technological R&D Center Zhengzhou, China
国际会议
武汉
英文
1116-1119
2009-11-18(万方平台首次上网日期,不代表论文的发表时间)