Incrementally-deployable security for interdomain routing

Jennifer L. Rexford, Joan Feigenbaum

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Scopus citations

Abstract

The Internet's interdomain-routing system is extremely vulnerable to accidental failure, configuration errors, and malicious attack. Any successful approach to improving interdomain-routing security must satisfy two requirements for incremental deployability: backwards compatibility with the existing routing protocol and installed base of routers and incentive compatibility with the desire of each domain to improve its part of the routing system even if other domains have not taken similar steps. We propose an incrementally deployable approach based on a Routing Control Platform(RCP) that makes routing decisions on behalf of the routers in a domain, without requiring changes to the routers or protocols. The RCP runs anomaly-detection algorithms that identify, and avoid, suspicious routes, allowing a domain (or a small group of cooperating domains) to significantly improve interdomain routing security.

Original languageEnglish (US)
Title of host publicationProceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009
Pages130-134
Number of pages5
DOIs
StatePublished - Jun 8 2009
EventCybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009 - Washington, DC, United States
Duration: Mar 3 2009Mar 4 2009

Publication series

NameProceedings - Cybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009

Other

OtherCybersecurity Applications and Technology Conference for Homeland Security, CATCH 2009
Country/TerritoryUnited States
CityWashington, DC
Period3/3/093/4/09

All Science Journal Classification (ASJC) codes

  • Computer Science Applications
  • Software
  • Public Administration

Fingerprint

Dive into the research topics of 'Incrementally-deployable security for interdomain routing'. Together they form a unique fingerprint.

Cite this