Entry vanOorschot:2007:IRS from tissec.bib

Last update: Sun Oct 15 02:58:48 MDT 2017                Valid HTML 3.2!

Index sections

Top | Symbols | Numbers | Math | A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

BibTeX entry

@Article{vanOorschot:2007:IRS,
  author =       "P. C. van Oorschot and Tao Wan and Evangelos
                 Kranakis",
  title =        "On interdomain routing security and pretty secure {BGP
                 (psBGP)}",
  journal =      j-TISSEC,
  volume =       "10",
  number =       "3",
  pages =        "11:1--11:??",
  month =        jul,
  year =         "2007",
  CODEN =        "ATISBQ",
  DOI =          "https://doi.org/10.1145/1266977.1266980",
  ISSN =         "1094-9224 (print), 1557-7406 (electronic)",
  ISSN-L =       "1094-9224",
  bibdate =      "Thu Jun 12 17:52:14 MDT 2008",
  bibsource =    "http://portal.acm.org/;
                 http://www.math.utah.edu/pub/tex/bib/tissec.bib",
  abstract =     "It is well known that the Border Gateway Protocol
                 (BGP), the IETF standard interdomain routing protocol,
                 is vulnerable to a variety of attacks, and that a
                 single misconfigured or malicious BGP speaker could
                 result in large-scale service disruption. In this
                 paper, we present Pretty Secure BGP (psBGP) ---a
                 proposal for securing BGP, including an architectural
                 overview, design details for significant aspects, and
                 preliminary security and operational analysis. psBGP
                 differs from other security proposals (e. g. , S-BGP
                 and soBGP) in that it makes use of a single-level PKI
                 for AS number authentication, a decentralized trust
                 model for verifying the propriety of IP prefix origin,
                 and a rating-based stepwise approach for AS\_PATH
                 (integrity) verification. psBGP trades off the strong
                 security guarantees of S-BGP for presumed-simpler
                 operation, e. g. , using a PKI with a simple structure,
                 with a small number of certificate types, and of
                 manageable size. psBGP is designed to successfully
                 defend against various (nonmalicious and malicious)
                 threats from uncoordinated BGP speakers, and to be
                 incrementally deployed with incremental benefits.",
  acknowledgement = ack-nhfb,
  articleno =    "11",
  fjournal =     "ACM Transactions on Information and System Security",
  journal-URL =  "http://portal.acm.org/browse_dl.cfm?idx=J789",
  keywords =     "authentication; BGP; certificates; interdomain
                 routing; public-key infrastructure; secure routing
                 protocols; trust",
}

Related entries