| 边界网关协议BGP-4的安全扩展 |
| |
| 引用本文: | 徐恪,熊勇强,吴建平.边界网关协议BGP-4的安全扩展[J].电子学报,2002,30(2):271-273. |
| |
| 作者姓名: | 徐恪 熊勇强 吴建平 |
| |
| 作者单位: | 清华大学计算机系,北京 100084 |
| |
| 基金项目: | 国家自然科学基金 (No .90 1 0 4 0 0 2 ),国家“八六三”计划重大项目 (No .863 30 6 ZD 0 7 0 1 ) |
| |
| 摘 要: | 文章分析了边界网关协议BGP4的安全弱点,针对这些安全弱点对协议进行了扩展.通过数字签名技术来保护AS-PATH属性中的信息.为了适应分布式路由协议的特点,提出了分布式的基于RSA的密钥生成算法.通过综合运用这些技术,在基本保持报文长度不变的情况下有效地保护了BGP协议信息的机密性、可信性和完整性.
|
| 关 键 词: | 路由协议 BGP 机密性 可信性 完整性 |
| 文章编号: | 0372-2112(2002)02-0271-03 |
| 收稿时间: | 2000-01-05 |
Security Extension of Border Gateway Protocol BGP-4 |
| |
| XU Ke,XIONG Yong qiang,WU Jian ping.Security Extension of Border Gateway Protocol BGP-4[J].Acta Electronica Sinica,2002,30(2):271-273. |
| |
| Authors: | XU Ke XIONG Yong qiang WU Jian ping |
| |
| Affiliation: | Department of Computer Science,Tsinghua University,Beijing 100084,China |
| |
| Abstract: | The security weakness of Border Gateway Protocol (BGP 4) is analyzed.Aiming at the weakness,the protocol are extended with some security properties.Digital signature mechanism is used to protect the AS -PATH information.To satisfy the characteristic of distributed routing protocol,a distributed key generation algorithm based on RSA is presented.By integrating these techniques,confidentiality,creditability and integrity of BGP are protected in keeping the packet length with near constant space. |
| |
| Keywords: | routing protocol BGP confidentiality creditability integrity |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《电子学报》浏览原始摘要信息 |
|
点击此处可从《电子学报》下载全文 |
