Inter-Domain Prefix and Route Validation Using Fast and Scalable DAG Based Distributed Ledger for Secure BGP Routing

Podili, Prashanth and Cherupally, Sumanth Reddy and Boga, Srinivas and Kataoka, Kotaro (2022) Inter-Domain Prefix and Route Validation Using Fast and Scalable DAG Based Distributed Ledger for Secure BGP Routing. Journal of Network and Systems Management, 30 (4). ISSN 1064-7570

Full text not available from this repository. (Request a copy)

Abstract

Border Gateway Protocol (BGP), the default inter-domain routing protocol on the Internet, lacks inherent mechanisms to validate the prefix ownership and integrity of inter-domain routes exchanged among multiple domains, resulting in BGP hijack attacks. Conventional security approaches such as RPKI and BGPSec are centralized and complex by nature, and require changes to existing routing infrastructure. In recent times, blockchain based solutions are proposed for validating the routing information exchanged across different domains in a decentralized manner. However, because of lower transaction throughput, longer confirmation time and huge storage overhead, the existing solutions are not suitable for validating the routing information exchanged among domains, where a large number of prefix allocations and BGP route advertisements are recorded as transactions on the blockchain. This work proposes an Inter-domain Prefix and Route Validation (IPRV) framework for validating prefix ownership and inter-domain routes exchanged among the domains on the Internet. IPRV leverages (a) Fast and Scalable Directed Acyclic Graph-based Distributed Ledger (FSD2L) to record transactions corresponding to the prefix allocations and BGP route advertisements made by different domains on the Internet, and (b) Route Validation Nodes (RVNs) which maintain FSD2L to provide prefix and route validation services to the BGP routers within a domain. IPRV framework is implemented and verified using docker containers, and the simulations performed on large inter-domain networks showed that the proposed IPRV framework using RVNs and FSD2L achieves high transaction throughput while minimizing the storage consumption of the FSD2L. © 2022, The Author(s), under exclusive licence to Springer Science+Business Media, LLC, part of Springer Nature.

[error in script]
IITH Creators:
IITH CreatorsORCiD
Kataoka, Kotarohttps://orcid.org/0000-0003-0545-3415
Item Type: Article
Uncontrolled Keywords: BGP; Blockchain; Directed acyclic graph; Distributed ledger; Inter-domain routing
Subjects: Computer science
Divisions: Department of Computer Science & Engineering
Depositing User: . LibTrainee 2021
Date Deposited: 18 Jul 2022 07:57
Last Modified: 18 Jul 2022 07:57
URI: http://raiithold.iith.ac.in/id/eprint/9757
Publisher URL: http://doi.org/10.1007/s10922-022-09668-2
OA policy: https://v2.sherpa.ac.uk/id/publication/15683
Related URLs:

Actions (login required)

View Item View Item
Statistics for RAIITH ePrint 9757 Statistics for this ePrint Item
Altmetric
EPrints Logo
RAIITH is powered by EPrints 3
[feed] Atom [feed] RSS 1.0 [feed] RSS 2.0