PrefiSec: A distributed alliance framework for collaborative BGP monitoring and prefix-based Security

Proceedings of the ACM Conference on Computer and Communications Security

Volumn 2014-November, Issue November, 2014, Pages 3-12

  Hiran, Rahul ^a   Carlsson, Niklas ^a   Shahmehri, Nahid ^a  

^a LINKÖPING UNIVERSITY   (Sweden)

Author keywords

BGP monitoring; Collaboration; Distributed alliance framework; Hijack; Interception; Prefix based security

Indexed keywords

BORDER GATEWAY PROTOCOL; INFORMATION ANALYSIS; SATELLITE INTERCEPTION;

AUTONOMOUS SYSTEMS; COLLABORATION; DISTRIBUTED ALLIANCE FRAMEWORK; DISTRIBUTED FRAMEWORK; HIJACK; NETWORK INFORMATION; PREFIX BASED; SYSTEM SECURITY;

INFORMATION DISSEMINATION;

EID: 84937678696     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2663876.2663879     Document Type: Conference Paper

References (38)

1. M. Allman, V. Paxson, and J. Terrell. A brief history of scanning. In Proc. ACM IMC, 2007.
2. R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose. Protocol Modifications for the DNS Security Extensions. RFC 4035 (Proposed Standard), 2005.
3. M. Arlitt, N. Carlsson, P. Gill, A. Mahanti, and C. Williamson. Characterizing intelligence gathering and control on an edge network. ACM TOIT, pages 2:1-2:26, 2011.
4. B. Augustin, B. Krishnamurthy, and W. Willinger. IXPs: mapped? In Proc. ACM IMC, 2009.
5. R. Baldoni, C. Marchetti, A. Virgillito, and R. Vitenberg. Content-based publish-subscribe over structured overlay networks. In Proc. IEEE ICDCS, 2005.
6. H. Ballani, P. Francis, and X. Zhang. A study of prefix hijacking and interception in the Internet. ACM CCR, pages 265-276, 2007.
7. K. Butler, T. Farley, P. McDaniel, and J. Rexford. A survey of BGP security issues and solutions. Proceedings of IEEE, 98:100-121, 2010.
8. N. Carlsson and M. Arlitt. Leveraging organizational etiquette to improve Internet security. In Proc. IEEE ICCCN, 2010.
9. K. Chen, D. R. Choffnes, R. Potharaju, Y. Chen, F. E. Bustamante, D. Pei, and Y. Zhao. Where the sidewalk ends: Extending the Internet AS graph using traceroutes from p2p users. In Proc. CoNEXT, 2009.
10. D. Cooper, E. Heilman, K. Brogle, L. Reyzin, and S. Goldberg. On the risk of misbehaving RPKI authorities. In Proc. ACM HotNets, 2013.
11. C. Duma, N. Shahmehri, and G. Caronni. Dynamic trust metrics for peer-to-peer systems. In Proc. PDMST, 2005.
12. J. Fan, J. Xu, M. H. Ammar, and S. B. Moon. Prefix-preserving IP address anonymization: measurement-based security evaluation and a new cryptography-based scheme. Computer Networks, pages 253-272, 2004.
13. N. Feamster, H. Balakrishnan, J. Rexford, A. Shaikh, and J. van der Merwe. The case for separating routing from routers. In Proc. ACM SIGCOMM FDNA, 2004.
14. R. Fernando and S. Stuart. BGP Monitoring Protocol. IETF, 2012.
15. P. Garca, C. Pairot, R. Mondjar, J. Pujol, H. Tejedor, and R. Rallo. PlanetSim: A new overlay network simulation framework. In Proc. SEM, 2004.
16. J. Gersch and D. Massey. ROVER: Route origin verification using DNS. In Proc. IEEE ICCCN, 2013.
17. A. Gupta, B. Liskov, and R. Rodrigues. Efficient routing for peer-to-peer overlays. In Proc. NSDI, San Francisco, CA, 2004.
18. A. Haeberlen, I. Avramopoulos, J. Rexford, and P. Druschel. NetReview: Detecting when interdomain routing goes wrong. In Proc. NSDI, 2009.
19. R. Hiran, N. Carlsson, and P. Gill. Characterizing large-scale routing anomalies: A case study of the China telecom incident. In Proc. PAM, 2013.
20. S. Iyer, A. Rowstron, and P. Druschel. Squirrel: A decentralized peer-to-peer Web cache. In Proc. ACM PODC, 2002.
21. J. Karlin, S. Forrest, and J. Rexford. Pretty good BGP: Improving BGP by cautiously adopting routes. In Proc. IEEE ICNP, 2006.
22. S. Katti, B. Krishnamurthy, and D. Katabi. Collaborating against common enemies. In Proc. IMC, 2005.
23. M. Lad, D. Massey, D. Pei, Y. Wu, B. Zhang, and L. Zhang. PHAS: A prefix hijack alert system. In Proc. USENIX Security Symp., 2006.
24. M. Lepinski. BGPSEC protocol specification. IETF, 2013.
25. M. Lepinski and S. Kent. An Infrastructure to Support Secure Internet Routing. RFC 6480 (Informational), 2012.
26. M. Luckie, B. Huffaker, A. Dhamdhere, V. Giotsas, and kc claffy. AS relationships, customer cones, and validation. In Proc. IMC, 2013.
27. H. Madhyastha, T. Isdal, M. Piatek, C. Dixon, T. Anderson, A. Krishnamurthy, and A. Venkataramani. iPlane: An information plane for distributed services. In Proc. OSDI, 2006.
28. Z. M. Mao, J. Rexford, J. Wang, and R. H. Katz. Towards an accurate AS-level traceroute tool. In Proc. ACM SIGCOMM, 2003.
29. P. Marchetta, W. de Donato, and A. Pescape. Detecting third-party addresses in traceroute traces with IP timestamp option. In Proc. PAM, 2013.
30. A. Ramachandran and N. Feamster. Understanding the network-level behavior of spammers. In Proc. ACM SIGCOMM, 2006.
31. H. Ringberg, A. Soule, and M. Caesar. Evaluating the potential of collaborative anomaly detection. Technical report, 2008.
32. Y. Shavitt, E. Shir, and U. Weinsberg. Near-deterministic inference of AS relationships. In Proc. ConTEL, 2009.
33. I. Stoica, R. Morris, D. Karger, M. F. Kaashoek, and H. Balakrishnan. Chord: A scalable peer-to-peer lookup service for Internet applications. In Proc. ACM SIGCOMM, 2001.
34. Symantec. 2013 Internet Security Threat Report, 2013.
35. Y. Zhang, R. Oliveira, Y. Wang, S. Su, B. Zhang, J. Bi, H. Zhang, and L. Zhang. A framework to quantify the pitfalls of using traceroute in AS-level topology measurement. IEEE JSAC, pages 1822-1836, 2011.
36. Z. Zhang, Y. Zhang, Y. C. Hu, Z. M. Mao, and R. Bush. Ispy: detecting IP prefix hijacking on my own. ACM CCR, pages 327-338, 2008.
37. C. Zheng, L. Ji, D. Pei, J. Wang, and P. Francis. A light-weight distributed scheme for detecting IP prefix hijacks in real-time. In Proc. ACM SIGCOMM, 2007.
38. C. V. Zhou, C. Leckie, and S. Karunasekera. A survey of coordinated attacks and collaborative intrusion detection. Computers and Security, 29:124-140, 2010.