检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
机构地区:[1]91996部队 [2]国防科学技术大学计算机学院
出 处:《计算机工程与科学》2011年第8期19-26,共8页Computer Engineering & Science
基 金:国家自然科学基金资助项目(60873214)
摘 要:基于BGP的域间路由系统是Internet的核心设施,是保证整个网络互联及正常运行的关键。然而,由于BGP协议本身缺乏必要的安全机制而极易受到攻击。例如,前缀劫持就是针对BGP缺陷而实施的一种较难防范的攻击。近年来,已发生多起BGP前缀劫持事件,造成了严重危害。本文基于GT-NetS软件构建了一个大规模域间路由系统模拟环境,并在该模拟环境中进行了多次BGP前缀劫持测试,结合测试结果分析对影响BGP前缀劫持攻击范围的有关因素进行了研究。测试表明,BGP前缀劫持造成的受害范围与攻击发起路由器所属AS的层次和度数有着直接的关系。The inter-domain routing system based on BGP is the core infrastructure of the Internet.It is also the key to ensuring interconnection and normal operation of the entire network.However,the BGP protocol itself is highly vulnerable to attacks due to the lack of necessary security mechanisms.For example,the BGP prefix hijacking is the one that is difficult to prevent.In recent years,there have been many BGP prefix hijacking incidents that caused serious harms.We have constructed a large-scale software simulation environment for inter-domain routing systems based on GTNetS,and have made a large number of BGP prefix hijacking tests,and we have studied the factors related to the attack scope of prefix hijacking.The tests show that the damage range caused by the BGP prefix hijacking has direct relationships with the levels and degrees of the AS from which the prefix hijacking is launched.
关 键 词:边界网关协议 自治系统 前缀劫持 模拟 GTNETS
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:52.15.109.247
