Pretty good BGP: Improving BGP by cautiously adopting routes

Josh Karlin; Stephanie Forrest; Jennifer L. Rexford

doi:10.1109/ICNP.2006.320179

Pretty good BGP: Improving BGP by cautiously adopting routes

Josh Karlin, Stephanie Forrest, Jennifer L. Rexford

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

137 Scopus citations

Abstract

The Internet's interdomain routing protocol, BGP, is vulnerable to a number of damaging attacks, which often arise from operator misconfiguration. Proposed solutions with strong guarantees require a public-key infrastructure, accurate routing registries, and changes to BGP. However, BGP routers can avoid selecting and propagating these routes if they are cautious about adopting new reachability information. We describe a protocolpreserving enhancement to BGP, Pretty Good BGP (PGBGP), that slows the dissemination of bogus routes, providing network operators time to respond before problems escalate into large-scale Internet attacks. Simulation results show that realistic deployments of PGBGP could provide 99% of Autonomous Systems with 24 hours to investigate and repair bogus routes without affecting prefix reachability. We also show that without PGBGP, 40% of ASs cannot avoid selecting bogus routes; with PGBGP, this number drops to less than 1%. Finally, we show that PGBGP is incrementally deployable and offers significant security benefits to early adopters and their customers.

Original language	English (US)
Title of host publication	Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006
Pages	290-299
Number of pages	10
DOIs	https://doi.org/10.1109/ICNP.2006.320179
State	Published - Dec 1 2006
Event	14th IEEE International Conference on Network Protocols, ICNP 2006 - Santa Barbara, CA, United States Duration: Nov 12 2006 → Nov 15 2006

Publication series

Name	Proceedings - International Conference on Network Protocols, ICNP
ISSN (Print)	1092-1648

Other

Other	14th IEEE International Conference on Network Protocols, ICNP 2006
Country/Territory	United States
City	Santa Barbara, CA
Period	11/12/06 → 11/15/06

All Science Journal Classification (ASJC) codes

Engineering(all)

Access to Document

10.1109/ICNP.2006.320179

Cite this

@inproceedings{a377a38823dd4a4bbf7580c6e0db56dc,

title = "Pretty good BGP: Improving BGP by cautiously adopting routes",

abstract = "The Internet's interdomain routing protocol, BGP, is vulnerable to a number of damaging attacks, which often arise from operator misconfiguration. Proposed solutions with strong guarantees require a public-key infrastructure, accurate routing registries, and changes to BGP. However, BGP routers can avoid selecting and propagating these routes if they are cautious about adopting new reachability information. We describe a protocolpreserving enhancement to BGP, Pretty Good BGP (PGBGP), that slows the dissemination of bogus routes, providing network operators time to respond before problems escalate into large-scale Internet attacks. Simulation results show that realistic deployments of PGBGP could provide 99% of Autonomous Systems with 24 hours to investigate and repair bogus routes without affecting prefix reachability. We also show that without PGBGP, 40% of ASs cannot avoid selecting bogus routes; with PGBGP, this number drops to less than 1%. Finally, we show that PGBGP is incrementally deployable and offers significant security benefits to early adopters and their customers.",

author = "Josh Karlin and Stephanie Forrest and Rexford, {Jennifer L.}",

year = "2006",

month = dec,

day = "1",

doi = "10.1109/ICNP.2006.320179",

language = "English (US)",

isbn = "1424405939",

series = "Proceedings - International Conference on Network Protocols, ICNP",

pages = "290--299",

booktitle = "Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006",

note = "14th IEEE International Conference on Network Protocols, ICNP 2006 ; Conference date: 12-11-2006 Through 15-11-2006",

}

Karlin, J, Forrest, S & Rexford, JL 2006, Pretty good BGP: Improving BGP by cautiously adopting routes. in Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006., 4110301, Proceedings - International Conference on Network Protocols, ICNP, pp. 290-299, 14th IEEE International Conference on Network Protocols, ICNP 2006, Santa Barbara, CA, United States, 11/12/06. https://doi.org/10.1109/ICNP.2006.320179

Pretty good BGP: Improving BGP by cautiously adopting routes. / Karlin, Josh; Forrest, Stephanie; Rexford, Jennifer L.
Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006. 2006. p. 290-299 4110301 (Proceedings - International Conference on Network Protocols, ICNP).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Pretty good BGP

T2 - 14th IEEE International Conference on Network Protocols, ICNP 2006

AU - Karlin, Josh

AU - Forrest, Stephanie

AU - Rexford, Jennifer L.

PY - 2006/12/1

Y1 - 2006/12/1

N2 - The Internet's interdomain routing protocol, BGP, is vulnerable to a number of damaging attacks, which often arise from operator misconfiguration. Proposed solutions with strong guarantees require a public-key infrastructure, accurate routing registries, and changes to BGP. However, BGP routers can avoid selecting and propagating these routes if they are cautious about adopting new reachability information. We describe a protocolpreserving enhancement to BGP, Pretty Good BGP (PGBGP), that slows the dissemination of bogus routes, providing network operators time to respond before problems escalate into large-scale Internet attacks. Simulation results show that realistic deployments of PGBGP could provide 99% of Autonomous Systems with 24 hours to investigate and repair bogus routes without affecting prefix reachability. We also show that without PGBGP, 40% of ASs cannot avoid selecting bogus routes; with PGBGP, this number drops to less than 1%. Finally, we show that PGBGP is incrementally deployable and offers significant security benefits to early adopters and their customers.

AB - The Internet's interdomain routing protocol, BGP, is vulnerable to a number of damaging attacks, which often arise from operator misconfiguration. Proposed solutions with strong guarantees require a public-key infrastructure, accurate routing registries, and changes to BGP. However, BGP routers can avoid selecting and propagating these routes if they are cautious about adopting new reachability information. We describe a protocolpreserving enhancement to BGP, Pretty Good BGP (PGBGP), that slows the dissemination of bogus routes, providing network operators time to respond before problems escalate into large-scale Internet attacks. Simulation results show that realistic deployments of PGBGP could provide 99% of Autonomous Systems with 24 hours to investigate and repair bogus routes without affecting prefix reachability. We also show that without PGBGP, 40% of ASs cannot avoid selecting bogus routes; with PGBGP, this number drops to less than 1%. Finally, we show that PGBGP is incrementally deployable and offers significant security benefits to early adopters and their customers.

UR - http://www.scopus.com/inward/record.url?scp=44049101942&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=44049101942&partnerID=8YFLogxK

U2 - 10.1109/ICNP.2006.320179

DO - 10.1109/ICNP.2006.320179

M3 - Conference contribution

AN - SCOPUS:44049101942

SN - 1424405939

SN - 9781424405930

T3 - Proceedings - International Conference on Network Protocols, ICNP

SP - 290

EP - 299

BT - Proceedings - 14th IEEE International Conference on Network Protocols, ICNP 2006

Y2 - 12 November 2006 through 15 November 2006

ER -

Pretty good BGP: Improving BGP by cautiously adopting routes

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this