The state of affairs in BGP security: A survey of attacks and defenses

Mitseva, Asya; Panchenko, Andriy; Engel, Thomas

doi:10.1016/j.comcom.2018.04.013

Cited by 58 publications

(37 citation statements)

References 131 publications

(192 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Table 4 gives a typical review of different types of prevention methodologies. Hypponen and Keijo, 2007;Ouafi et al, 2008;Callegati et al, 2009;Joshi et al, 2009;Yvo Desmedt, 2011;Sounthiraraj et al, 2014;Khader and Lai, 2015;Yu-Chih Tung et al, 2016;Wallace and Miller, 2017;Li et al, 2017;Rahim, 2017;Yang-Yang Fei et al, 2018;Howell et al, 2018;Da-Zhi Sun et al, 2018;Usman et al, 2018;En-Chun Kuo et al, 2018;Saif et al, 2018), Stiansen, 2018;Chaz & Kim-Kwang Raymond Choo, 2018; DNS: (Yong Wan Chopra and MichaelKaufman, 2014;Naqash et al 2012;Kaminsky 2008;Lindell 2018;Li Xiang et al, 2018; D. Zhang, Yuezhi Zhou and Yaoxue Zhang, 2018) BGP: (Mitseva et al, 2018;Preneel and Frederik Vercauteren, 2015;Haya Shulman, 2018;Flores et al, 2018) DCHP: (Ou et al, 2010;Huang et al, 2017;Hwang and Prosanta Gope, 2014; (1 & 2)) DNS:('man-in-the-middleattack'(CA.Tech. )), (Duan et al, 2006;Andersen et al, 2008;…”

Section: Preventing Mitmmentioning

confidence: 99%

Man-in-the-middle-attack: Understanding in simple words

Mallik¹,

Ahsan²,

Shahadat³

et al. 2019

10.5267/j.ijdns

View full text Add to dashboard Cite

These days cyberattack is a serious criminal offense and it is a hotly debated issue moreover. A man-in-the-middle-attack is a kind of cyberattack where an unapproved outsider enters into an online correspondence between two users, remains escaped the two parties. The malware that is in the middle-attack often monitors and changes individual/classified information that was just realized by the two users. A man-in-the-middle-attack as a protocol is subjected to an outsider inside the system, which can access, read and change secret information without keeping any tress of manipulation. This issue is intense, and most of the cryptographic systems without having a decent authentication security are threatened to be hacked by the malware named 'men-in-themiddle-attack' (MITM/MIM). This paper essentially includes the view of understanding the term of 'men-in-the-middle-attack'; the current work is mainly emphasized to accumulate related data/information in a single article so that it can be a reference to conduct research further on this topic at college/undergraduate level. This paper likewise audits most cited research and survey articles on 'man-in-the-middle-attack' recorded on 'Google Scholar'. The motivation behind this paper is to help the readers for understanding and familiarizing the topic 'man-in-the-middle attack'.

show abstract

Section: Preventing Mitmmentioning

confidence: 99%

Man-in-the-middle-attack: Understanding in simple words

Mallik¹,

Ahsan²,

Shahadat³

et al. 2019

10.5267/j.ijdns

View full text Add to dashboard Cite

show abstract

“…BGP vulnerabilities and hijacks have been studied for a long time [10,13,36,37,52]. However, proposals to secure BGP have not gained widespread traction.…”

Section: Related Workmentioning

confidence: 99%

Profiling BGP Serial Hijackers

Testart

Richter

King

et al. 2019

Proceedings of the Internet Measurement Conference

View full text Add to dashboard Cite

BGP hijacks remain an acute problem in today's Internet, with widespread consequences. While hijack detection systems are readily available, they typically rely on a priori prefix-ownership information and are reactive in nature. In this work, we take on a new perspective on BGP hijacking activity: we introduce and track the long-term routing behavior of serial hijackers, networks that repeatedly hijack address blocks for malicious purposes, often over the course of many months or even years. Based on a ground truth dataset that we construct by extracting information from network operator mailing lists, we illuminate the dominant routing characteristics of serial hijackers, and how they differ from legitimate networks. We then distill features that can capture these behavioral differences and train a machine learning model to automatically identify Autonomous Systems (ASes) that exhibit characteristics similar to serial hijackers. Our classifier identifies ≈ 900 ASes with similar behavior in the global IPv4 routing table. We analyze and categorize these networks, finding a wide range of indicators of malicious activity, misconfiguration, as well as benign hijacking activity. Our work presents a solid first step towards identifying and understanding this important category of networks, which can aid network operators in taking proactive measures to defend themselves against prefix hijacking and serve as input for current and future detection systems. CCS CONCEPTS • Networks → Network measurement; Network security.

show abstract

“…is an Internet infrastructure resource management system implemented by IANA and deployed experimentally to support inter-domain routing security [19]. It is used to issue certificates and verify the validity of routing announcements.…”

Section: Rpki Rpki (Resource Pki)mentioning

confidence: 99%

“…One of the most crucial problems is securing inter-domain routing [17][18][19]. The BGP security problem has been emphasized by many notable attacks and configuration errors (e.g., [1][2][3]).…”

Section: Introductionmentioning

confidence: 99%

“…The BGP security problem has been emphasized by many notable attacks and configuration errors (e.g., [1][2][3]). By examining which Autonomous System (AS) is authorized to originate which IP prefix, origin authentication provides an important step towards securing inter-domain routing [19][20][21]. A cryptographic certificate hierarchy, as the current prevalent paradigm for origin authentication, like RPKI [22] and ROVER [23], signs and attests to the binding of an IP-prefix and its origin AS (including the AS number and public key).…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

BGPcoin: Blockchain-Based Internet Number Resource Authority and BGP Security Solution

Xing

Wang

2018

Symmetry

View full text Add to dashboard Cite

Without the design for inherent security, the Border Gateway Protocol (BGP) is vulnerable to prefix/subprefix hijacks and other attacks. Though many BGP security approaches have been proposed to prevent or detect such attacks, the unsatisfactory cost-effectiveness frustrates their deployment. In fact, the currently deployed BGP security infrastructure leaves the chance for potential centralized authority misconfiguration and abuse. It actually becomes the critical yield point that demands the logging and auditing of misbehaviors and attacks in BGP security deployments. We propose a blockchain-based Internet number resource authority and trustworthy management solution, named BGPcoin, to facilitate the transparency of BGP security. BGPcoin provides a reliable origin advertisement source for origin authentication by dispensing resource allocations and revocations compliantly against IP prefix hijacking. We perform and audit resource assignments on the tamper-resistant Ethereum blockchain by means of a set of smart contracts, which also interact as one to provide the trustworthy origin route examination for BGP. Compared with RPKI, BGPcoin yields significant benefits in securing origin advertisement and building a dependable infrastructure for the object repository. We demonstrate it through an Ethereum prototype implementation, and we deploy it and do experiment on a locally-simulated network and an official Ethereum test network respectively. The extensive experiment and evaluation demonstrate the incentives to deploy BGPcoin, and the enhanced security provided by BGPcoin is technically and economically feasible.

show abstract

The state of affairs in BGP security: A survey of attacks and defenses

Cited by 58 publications

References 131 publications

Man-in-the-middle-attack: Understanding in simple words

Man-in-the-middle-attack: Understanding in simple words

Profiling BGP Serial Hijackers

BGPcoin: Blockchain-Based Internet Number Resource Authority and BGP Security Solution

Contact Info

Product

Resources

About