Incrementally-deployable security for interdomain routing

Jennifer L. Rexford; Joan Feigenbaum

doi:10.1109/CATCH.2009.35

Incrementally-deployable security for interdomain routing

Jennifer L. Rexford, Joan Feigenbaum

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

5 Scopus citations

Abstract

The Internet's interdomain-routing system is extremely vulnerable to accidental failure, configuration errors, and malicious attack. Any successful approach to improving interdomain-routing security must satisfy two requirements for incremental deployability: backwards compatibility with the existing routing protocol and installed base of routers and incentive compatibility with the desire of each domain to improve its part of the routing system even if other domains have not taken similar steps. We propose an incrementally deployable approach based on a Routing Control Platform(RCP) that makes routing decisions on behalf of the routers in a domain, without requiring changes to the routers or protocols. The RCP runs anomaly-detection algorithms that identify, and avoid, suspicious routes, allowing a domain (or a small group of cooperating domains) to significantly improve interdomain routing security.

Original language	English (US)
Title of host publication	Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009
Pages	130-134
Number of pages	5
DOIs	https://doi.org/10.1109/CATCH.2009.35
State	Published - Jun 8 2009
Event	Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009 - Washington, DC, United States Duration: Mar 3 2009 → Mar 4 2009

Publication series

Name	Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009

Other

Other	Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009
Country/Territory	United States
City	Washington, DC
Period	3/3/09 → 3/4/09

All Science Journal Classification (ASJC) codes

Computer Science Applications
Software
Public Administration

Access to Document

10.1109/CATCH.2009.35

Cite this

Rexford, J. L., & Feigenbaum, J. (2009). Incrementally-deployable security for interdomain routing. In Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009 (pp. 130-134). Article 4804435 (Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009). https://doi.org/10.1109/CATCH.2009.35

@inproceedings{3f9fc29e99a74164b98bdc02e81d93d9,

title = "Incrementally-deployable security for interdomain routing",

abstract = "The Internet's interdomain-routing system is extremely vulnerable to accidental failure, configuration errors, and malicious attack. Any successful approach to improving interdomain-routing security must satisfy two requirements for incremental deployability: backwards compatibility with the existing routing protocol and installed base of routers and incentive compatibility with the desire of each domain to improve its part of the routing system even if other domains have not taken similar steps. We propose an incrementally deployable approach based on a Routing Control Platform(RCP) that makes routing decisions on behalf of the routers in a domain, without requiring changes to the routers or protocols. The RCP runs anomaly-detection algorithms that identify, and avoid, suspicious routes, allowing a domain (or a small group of cooperating domains) to significantly improve interdomain routing security.",

author = "Rexford, {Jennifer L.} and Joan Feigenbaum",

year = "2009",

month = jun,

day = "8",

doi = "10.1109/CATCH.2009.35",

language = "English (US)",

isbn = "9780769535685",

series = "Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009",

pages = "130--134",

booktitle = "Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009",

note = "Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009 ; Conference date: 03-03-2009 Through 04-03-2009",

}

Rexford, JL & Feigenbaum, J 2009, Incrementally-deployable security for interdomain routing. in Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009., 4804435, Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009, pp. 130-134, Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009, Washington, DC, United States, 3/3/09. https://doi.org/10.1109/CATCH.2009.35

Incrementally-deployable security for interdomain routing. / Rexford, Jennifer L.; Feigenbaum, Joan.
Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009. 2009. p. 130-134 4804435 (Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Incrementally-deployable security for interdomain routing

AU - Rexford, Jennifer L.

AU - Feigenbaum, Joan

PY - 2009/6/8

Y1 - 2009/6/8

N2 - The Internet's interdomain-routing system is extremely vulnerable to accidental failure, configuration errors, and malicious attack. Any successful approach to improving interdomain-routing security must satisfy two requirements for incremental deployability: backwards compatibility with the existing routing protocol and installed base of routers and incentive compatibility with the desire of each domain to improve its part of the routing system even if other domains have not taken similar steps. We propose an incrementally deployable approach based on a Routing Control Platform(RCP) that makes routing decisions on behalf of the routers in a domain, without requiring changes to the routers or protocols. The RCP runs anomaly-detection algorithms that identify, and avoid, suspicious routes, allowing a domain (or a small group of cooperating domains) to significantly improve interdomain routing security.

AB - The Internet's interdomain-routing system is extremely vulnerable to accidental failure, configuration errors, and malicious attack. Any successful approach to improving interdomain-routing security must satisfy two requirements for incremental deployability: backwards compatibility with the existing routing protocol and installed base of routers and incentive compatibility with the desire of each domain to improve its part of the routing system even if other domains have not taken similar steps. We propose an incrementally deployable approach based on a Routing Control Platform(RCP) that makes routing decisions on behalf of the routers in a domain, without requiring changes to the routers or protocols. The RCP runs anomaly-detection algorithms that identify, and avoid, suspicious routes, allowing a domain (or a small group of cooperating domains) to significantly improve interdomain routing security.

UR - http://www.scopus.com/inward/record.url?scp=66249133370&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=66249133370&partnerID=8YFLogxK

U2 - 10.1109/CATCH.2009.35

DO - 10.1109/CATCH.2009.35

M3 - Conference contribution

AN - SCOPUS:66249133370

SN - 9780769535685

T3 - Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009

SP - 130

EP - 134

BT - Proceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009

T2 - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009

Y2 - 3 March 2009 through 4 March 2009

ER -

Incrementally-deployable security for interdomain routing

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this