An Improved BGP Security Mechanism

doi:10.13190/jbupt.201206.87.zhaoch

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2012, Vol. 35 ›› Issue (6): 87-91.doi: 10.13190/jbupt.201206.87.zhaoch

• Papers • Previous Articles Next Articles

An Improved BGP Security Mechanism

ZHAO Chen, SUN Bin, YANG Yi-xian, YANG Yan

1. Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China;2. National Engineering Laboratory for Disaster Backup and Recovery, Beijing University of Posts and Telecommunications, Beijing 100876, China;3. State Key Laboratory of Rail Traffic Control and Safety, Beijing Jiaotong University, Beijing 100044, China

Received:2012-04-09 Revised:2012-07-27 Online:2012-12-28 Published:2013-01-07
Contact: Chen ZHAO E-mail:sdqdzhaochen@163.com

Abstract

Abstract:

For lack of necessary security mechanism, the border gateway protocol (BGP) faces serious security threats. In proposed BGP security mechanisms, the management of complicated certificatation and excessive storage overhead severely block security solutions from being implemented and deployed in real world. Based on modification of autonomous system alliance’s structure, the proxy re-signature is introduced into security enhanced BGP (SE-BGP) to improve translator trust model. An improved BGP security mechanism named improved SE-BGP is also designed for solving the problem of cross-certification of key nodes between autonomous system alliances. Security analysis and performance evaluation demonstrate that this mechanism continues to reduce the route resource expenses to have better scalability and good security capability. The number of used certificates is about 31% of the SE-BGP.

Key words: border gateway protocol, cross-certification, proxy re-signature, security

CLC Number:

TN393

ZHAO Chen, SUN Bin, YANG Yi-xian, YANG Yan. An Improved BGP Security Mechanism[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2012, 35(6): 87-91.

[1]	LI Zineng, HU Zhiqun, XIAO Hailin, ZENG Zhangfan. UAV security communication algorithm with Intelligent Reflecting Surface and cooperative Jamming [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(1): 69-76.
[2]	. Physical Layer Security for IRS-based Cognitive NOMA V2V Network [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(6): 131-137.
[3]	SHI Zicheng, LI Xin, TANG Ying, HUANG Shanguo. Optical Packet Filtering System Based on All-Optical Pattern Matching [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(3): 96-101.
[4]	YANG Hongyu, YUAN Haihang, ZHANG Liang. A Risk Assessment Method of Network Host Node with Host Importance [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(2): 16-21.
[5]	LI Meiling, YANG Xiaoxia, CHENG Wenjie, LU Zhaoming. Physical Layer Security for CR-NOMA System in Vehicle-to-Everything [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(1): 115-120.
[6]	WANG Yong, GONG Jian, WANG Mingyue, JIANG Gongkun. A Pseudo-Random Number Generator for Integer Chaotic Map [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(1): 58-62.
[7]	ZHANG Lei, CHEN Chuan, TAN Qi-yun, HAO Mao-xin, YANG Xue-kang. An Image Encryption Algorithm Combining S-Box and Chaotic Mapping [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(6): 40-47.
[8]	TANG Yong-li, LI Xing-yu, ZHAO Zong-qu, LI Yun-feng. Detection Method for Android Payment Cracked Application [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(4): 95-101.
[9]	XUE Jian-bin, BAI Zi-mei. Security and Efficient Authentication Scheme for Mobile Edge Computing [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(1): 110-116.
[10]	LI Zeng-peng, WANG Jiu-ru, ZHANG Wen-yin, MA Chun-guang. A Threshold Public Key Encryption via Dual Regev Scheme [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(4): 83-87.
[11]	CHEN Pei-pei, LI Tao-shen, GE Zhi-hui, FANG Xing. Secure Beamforming Design for Full-Duplex Energy-Constrained Relaying Networks [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(2): 59-65,79.
[12]	LI Tao, ZHANG Jing, YANG Hao. Analysis and Improvement of Privacy Protection Scheme in VANET [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(1): 104-110.
[13]	LEI Wei-jia, LI Huan. Signal Combining and Self-Interference Cancellation Scheme Based on Linear Neural Network in a Full-Duplex Receiver Cooperative Jamming System [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(1): 61-67.
[14]	XIAO Jian, LI Wen-jiang, GENG Hong-yang, ZHAI Ying-bo. An Anti-DoS Attack RFID Security Authentication Protocol in the Internet of Vehicles [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(2): 114-119.
[15]	LEI Wei-jia, LI Yu-yu. A Joint Scheme for Error Correction and Secrecy Based on Rateless Error Correction Codes [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(1): 74-80.

An Improved BGP Security Mechanism

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments