Implementation of BGP Security Modules in Hybrid-SDN network

Kuang-Ting Cheng, Pang-Wei Tsai, Aris Cahyadi Risdianto, Teck Chaw Ling, Shu-Wei Lee, Chu-Sing Yang

Abstract


The Border Gateway Protocol (BGP) is the dominant Exterior Gateway Protocol (EGP) that exchanges routing information among autonomous systems in IP networks, which remains an essential part of the Internet today. As the scale of the Internet continues to grow, the trust-based design of BGP protocol lacks protection on information exchange that leads to some potential threats, like doing hijack or eavesdrop traffic by counterfeiting or modifying BGP update messages. To further consider the potential risk of BGP as well as illustrate this issue in Software-defined Networking (SDN) environment, this paper introducing the design and development of a BGP security module which is able to protect the BGP peering in a hybrid-SDN network system. Experimental results show that these modules are capable of protecting BGP sessions and validating prefixes announced by emulated autonomous systems.

Full Text:

PDF

Refbacks

  • There are currently no refbacks.