Journal of Beijing University of Posts and Telecommunications

  • EI核心期刊

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2011, Vol. 34 ›› Issue (s1): 114-118.doi: 10.13190/jbupt.2011s1.114.zhongjx

• Reports • Previous Articles     Next Articles

A BGP Vulnerability on Supporting 4Octet AS Number Space

    

  1.  
  • Online:2011-10-28 Published:2011-10-28
  • Supported by:
     

Abstract:

A new border gateway protocol (BGP) security problem, multiexitdiscriminator (MED) vulnerability, has been discovered, which could be abused in data hijacking. For the reason that BGP devices may not operate as expected with the extension of 4octet autonomous system (AS) number, data streams could be diverted to other Internet service providers unconsciously and bring serious threat to the global network. In addition the weakness is simulated under the environment of Cisco routers, and a kind of maninthemiddle data hijack based on the MED flaw is implemented and verified through the experiment.

Key words: border gateway protocol security; multiexitdiscriminator vulnerability, 4octet autonomous system number, data flow hijack

CLC Number: