Netreview: Detecting when interdomain routing goes wrong

Andreas Haeberlen, Ioannis Avramopoulos, Jennifer Rexford, Peter Druschel

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Despite many attempts to fix it, the Internet's interdomain routing system remains vulnerable to configuration errors, buggy software, flaky equipment, protocol oscillation, and intentional attacks. Unlike most existing solutions that prevent specific routing problems, our approach is to detect problems automatically and to identify the offending party. Fault detection is effective for a larger class of faults than fault prevention and is easier to deploy incrementally. To show that fault detection is useful and practical, we present NetReview, a fault detection system for the Border Gateway Protocol (BGP). NetReview records BGP routing messages in a tamper-evident log, and it enables ISPs to check each other's logs against a high-level description of the expected behavior, such as a peering agreement or a set of best practices. At the same time, NetReview respects the ISPs' privacy and allows them to protect sensitive information. We have implemented and evaluated a prototype of NetReview; our results show that NetReview catches common Internet routing problems, and that its resource requirements are modest.

Original languageEnglish (US)
Title of host publicationProceedings of the 6th USENIX Symposium on Networked Systems Design and Implementation, NSDI 2009
PublisherUSENIX Association
Pages437-452
Number of pages16
ISBN (Electronic)9781931971676
StatePublished - Jan 1 2019
Event6th USENIX Symposium on Networked Systems Design and Implementation, NSDI 2009 - Boston, United States
Duration: Apr 22 2009Apr 24 2009

Publication series

NameProceedings of the 6th USENIX Symposium on Networked Systems Design and Implementation, NSDI 2009

Conference

Conference6th USENIX Symposium on Networked Systems Design and Implementation, NSDI 2009
Country/TerritoryUnited States
CityBoston
Period4/22/094/24/09

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Control and Systems Engineering

Fingerprint

Dive into the research topics of 'Netreview: Detecting when interdomain routing goes wrong'. Together they form a unique fingerprint.

Cite this