Abstract
As the Internet's de facto interdomain routing protocol, the Border Gateway Protocol (BGP) is the glue that holds the disparate parts of the Internet together. A major limitation of BGP is its failure to adequately address security. Recent high-profile outages and security analyses clearly indicate that the Internet routing infrastructure is highly vulnerable. Moreover, the design of BGP and the ubiquity of its deployment have frustrated past efforts at securing interdomain routing. This paper considers the current vulnerabilities of the interdomain routing system and surveys both research and standardization efforts relating to BGP security. We explore the limitations and advantages of proposed security extensions to BGP, and explain why no solution has yet struck an adequate balance between comprehensive security and deployment cost.
Original language | English (US) |
---|---|
Article number | 5357585 |
Pages (from-to) | 100-122 |
Number of pages | 23 |
Journal | Proceedings of the IEEE |
Volume | 98 |
Issue number | 1 |
DOIs | |
State | Published - Jan 2010 |
All Science Journal Classification (ASJC) codes
- General Computer Science
- Electrical and Electronic Engineering
Keywords
- Authentication
- Authorization
- BGP
- Border gateway protocol
- Integrity
- Interdomain routing
- Network security
- Networks
- Routing