CAJ | 학술논문

基于边界网关协议(BGP)的域间路由系统已经成为Internet的核心路由设施,但由于BGP本身缺乏安全机制,很容易受到各种人为配置错误或者恶意攻击的影响.我们开发的域间路由监测系统可以从4个层次实现对域间路由的安全监测,分别是Internet、国家网络、特定ISP和特定路由.本文详细介绍了多层次域间路由安全监测系统的组成结构、软件结构、设计思想、实现技术和测试结果.
기우변계망관협의(BGP)적역간로유계통이경성위Internet적핵심로유설시,단유우BGP본신결핍안전궤제,흔용역수도각충인위배치착오혹자악의공격적영향.아문개발적역간로유감측계통가이종4개층차실현대역간로유적안전감측,분별시Internet、국가망락、특정ISP화특정로유.본문상세개소료다층차역간로유안전감측계통적조성결구、연건결구、설계사상、실현기술화측시결과.
As we all know, the inter-domain routing systems, based on BGP (Boarder Gateway Protocol, BGP), has become the core routing facilities of the Internet. However, due to their lack of the BGP security mechanism, BGP is vulnerable to all kinds of human configuration errors or malicious attacks. We develop a multi-level inter-domain routing security monitoring system, and it can achieve four levels of domain routing, including the Internet, national network, a particular ISP and a specific route. This paper describes the system's composition structure, software structure, design, implementation technology and the achieved results.