Architecture of the remote routing validation tool for BGP anomaly detection

  • Authors:
  • Je-Kuk Yun;ChangHyun Byun;Yanggon Kim

  • Affiliations:
  • Towson University, Towson, MD;Towson University, Towson, MD;Towson University, Towson, MD

  • Venue:
  • Proceedings of the 2012 ACM Research in Applied Computation Symposium
  • Year:
  • 2012

Quantified Score

Hi-index 0.00

Visualization

Abstract

The Border Gateway Protocol (BGP) is an Inter-domain routing protocol that has gradually evolved over the past few decades. The main functionality of BGP is to exchange Network Layer Reachability Information (NLRI) between ASes so that a BGP speaker can find a better path to the destination of packets. However, BGP is highly vulnerable to a variety of attacks such as IP hijacking, masquerade, and Denial of Service (DOS). In order to protect BGP, there is a plethora of research on BGP security, such as Secure BGP (S-BGP), Secure Origin BGP (SO-BGP), Pretty Secure BGP (psBGP), Pretty Good BGP (pgBGP), and so on. In this paper, we propose Architecture of the Remote Routing Validation Tool (RRVT) which provides a communication channel between ordinary BGP routers and BGP-SRx server so that the ordinary BGP routers can validate BGP messages. BGP-SRx server, developed by NIST, offers the interface to the RPKI/ROA validation Cache using the RPKI.