ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Integrating security in inter-domain routing protocols
Full text PdfPdf (1.35 MB)
Source ACM SIGCOMM Computer Communication Review archive
Volume 23 ,  Issue 5  (October 1993) table of contents
Pages: 36 - 51  
Year of Publication: 1993
ISSN:0146-4833
Authors
Brijesh Kumar
Jon Crowcroft
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 5,   Downloads (12 Months): 23,   Citation Count: 4
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/165611.165615
What is a DOI?

ABSTRACT

Network routing protocols work in a vulnerable environment. Unless protected by appropriate security measures, their operation can be easily subverted by intruders capable of modifying, deleting or adding false information in routing updates. This paper first analyses threats to the secure operation of inter-domain routing protocols, and then proposes various counter measures to make these protocols secure against external threats.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

1
J. H. Saltzer , D. P. Reed , D. D. Clark, End-to-end arguments in system design, ACM Transactions on Computer Systems (TOCS), v.2 n.4, p.277-288, Nov. 1984  [doi>10.1145/357401.357402]
 
2
[2] Gregory G. Finn "Reducing the Vulnerability of Dynamic computer Networks," ISI Research Report, University of Southern California, June 1988.
 
3
[3] ISO, "Intermediate System to Intermediate System Inter-Domain Routeing Information exchange protocol," DIS 10747, July 1992.
 
4
[4] ISO, "Protocol for Providing the Connectionless-mode Network service," ISO 8473, 1988.
 
5
[5] Jon Postel, "Internet Protocol," RFC 791, SRI Network Information Center, September 1981.
 
6
K. Lougheed , Y. Rekhter, Border Gateway Protocol 3 (BGP-3), RFC Editor, 1991
 
7
R. Rivest, The MD5 Message-Digest Algorithm, RFC Editor, 1992
8
R. L. Rivest , A. Shamir , L. Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM, v.21 n.2, p.120-126, Feb. 1978  [doi>10.1145/359340.359342]
 
9
[9] D.E. Denning, Cryptography and Data Security, Addison-Wesley Publishing Company, London, 1984.
10
Dorothy E. Denning, Digital signatures with RSA and other public-key cryptosystems, Communications of the ACM, v.27 n.4, p.388-392, April 1984  [doi>10.1145/358027.358052]
 
11
[11] Radia Perlman, "Network Layer Protocol with Byzantine Robustness," Ph.D Thesis, MIT, 1988.
 
12
S. T. Kent , J. Linn, Privacy enhancement for Internet electronic mail: Part II - certificate-based key management, RFC Editor, 1989
 
13
[13] Estrin and Gene Tsudik, "Secure Control of Transit Internetwork Traffic," Computer Networks and ISDN Systems, vol. 22, no. 5, pp. 363-381, October 1991.
 
14
[14] Bella Bollabas, Random Graphs, p. 447, Academic Press, London, 1985.
 
15
[15] Barry M. Leiner, Robert Cole, Jon Postel, and David Mills, "The DARPA Internet Protocol Suite, "IEEE Communications Magazine, vol. 28, no. 3, pp. 29-34, March 1985.
 
16
[16] Davies and W.L. Price, Security for Computer Netoworks, John Wiley & Sons Ltd., Chichester, 1984.
17
Andrew D. Birrell, Secure communication using remote procedure calls, ACM Transactions on Computer Systems (TOCS), v.3 n.1, p.1-14, Feb. 1985  [doi>10.1145/214451.214452]

CITED BY  4
Steven Cheung , Karl N. Levitt, Protecting routing infrastructures from denial of service using cooperative intrusion detection, Proceedings of the 1997 workshop on New security paradigms, p.94-106, September 23-26, 1997, Langdale, Cumbria, United Kingdom
Yih-Chun Hu , Adrian Perrig , Marvin Sirbu, SPV: secure path vector routing for securing BGP, ACM SIGCOMM Computer Communication Review, v.34 n.4, October 2004
Antonio Pescapè , Giorgio Ventre, Experimental analysis of attacks against intradomain routing protocols, Journal of Computer Security, v.13 n.6, p.877-903, December 2005
P.C. van Oorschot , Tao Wan , Evangelos Kranakis, On interdomain routing security and pretty secure BGP (psBGP), ACM Transactions on Information and System Security (TISSEC), v.10 n.3, p.11-es, July 2007

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS

  F. Theory of Computation
  F.2 ANALYSIS OF ALGORITHMS AND PROBLEM COMPLEXITY
      F.2.2 Nonnumerical Algorithms and Problems
          Subjects: Routing and layout


General Terms:
Design, Measurement, Performance, Security, Standardization, Theory, Verification

Collaborative Colleagues:
Brijesh Kumar: colleagues
Jon Crowcroft: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player