liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Collaborative framework for protection against attacks targeting BGP and edge networks
Linköping University, Department of Computer and Information Science. Linköping University, Faculty of Science & Engineering.
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering.
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering.
2017 (English)In: Computer Networks, ISSN 1389-1286, E-ISSN 1872-7069, Vol. 122, 120-137 p.Article in journal (Refereed) Published
Abstract [en]

This paper presents the design and data-driven overhead analysis of PrefiSec, a distributed framework that helps collaborating organizations to effectively maintain and share network information in the fight against miscreants. PrefiSec is a novel distributed IP-prefix-based solution, which maintains information about the activities associated with IP prefixes (blocks of IP addresses) and autonomous systems (AS) and enables efficient sharing of this information between participants. Within PrefiSec, we design and evaluate simple and scalable mechanisms that help to protect against prefixisubprefix attacks and interception attacks, and enable sharing of prefix related information related to a wide range of edge-based attacks, such as spamming and scanning. We also include an evaluation of which ASes need to collaborate, to what extent the size and locality of ASes matter, and how many ASes are needed to achieve good efficiency in detecting anomalous route announcements. Public wide-area BGP-announcements, traceroutes, and simulations are used to estimate the overhead, scalability, and alert rates. Our results show that PrefiSec helps improve system security, and can scale to large systems. (C) 2017 Elsevier B.V. All rights reserved.

Place, publisher, year, edition, pages
ELSEVIER SCIENCE BV , 2017. Vol. 122, 120-137 p.
Keyword [en]
Collaboration; Information sharing; Interdomain routing; BGP; Prefix hijack; Interception attacks
National Category
Computer Engineering
Identifiers
URN: urn:nbn:se:liu:diva-139262DOI: 10.1016/j.comnet.2017.04.048ISI: 000403862400010OAI: oai:DiVA.org:liu-139262DiVA: diva2:1121156
Note

Funding Agencies|Swedish National Graduate School in Computer Science (CUGS)

Available from: 2017-07-10 Created: 2017-07-10 Last updated: 2017-09-15

Open Access in DiVA

The full text will be freely available from 2019-04-22 11:10
Available from 2019-04-22 11:10

Other links

Publisher's full text

Search in DiVA

By author/editor
Hiran, RahulCarlsson, NiklasShahmehri, Nahid
By organisation
Department of Computer and Information ScienceFaculty of Science & EngineeringDatabase and information techniques
In the same journal
Computer Networks
Computer Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 230 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf