安徽大学学报(自然科学版)
安徽大學學報(自然科學版)
안휘대학학보(자연과학판)
JOURNAL OF ANHUI UNIVERSITY(NATURAL SCIENCES EDITION)
2014年
4期
33-36
,共4页
域间路由%BGP%贝叶斯估计
域間路由%BGP%貝葉斯估計
역간로유%BGP%패협사고계
inter-domain routing protocol%BGP%Bayesian estimation
由于 BGP(border gateway protocol)协议在设计之初没有考虑协议本身的安全性,导致目前 BGP 协议遭受来自网络的各种攻击,严重影响着互联网的安全。根据社会实体间的信任关系,把信任引入域间自治系统中,将各自治系统(autonomous system,简称 AS)作为一个实体,各 AS 根据与邻居 AS 的历史交互数据,由贝叶斯估计理论对邻居 AS 下一次表现好坏给出一个度量---节点信任度,并由节点信任度定义的路径信任度作为一个新的 BGP 选路标准。最后试验表明,扩展后的 BGP(new-border gateway protocol ,简称 N-BGP)协议能够有效地抑制虚假路由的传播。
由于 BGP(border gateway protocol)協議在設計之初沒有攷慮協議本身的安全性,導緻目前 BGP 協議遭受來自網絡的各種攻擊,嚴重影響著互聯網的安全。根據社會實體間的信任關繫,把信任引入域間自治繫統中,將各自治繫統(autonomous system,簡稱 AS)作為一箇實體,各 AS 根據與鄰居 AS 的歷史交互數據,由貝葉斯估計理論對鄰居 AS 下一次錶現好壞給齣一箇度量---節點信任度,併由節點信任度定義的路徑信任度作為一箇新的 BGP 選路標準。最後試驗錶明,擴展後的 BGP(new-border gateway protocol ,簡稱 N-BGP)協議能夠有效地抑製虛假路由的傳播。
유우 BGP(border gateway protocol)협의재설계지초몰유고필협의본신적안전성,도치목전 BGP 협의조수래자망락적각충공격,엄중영향착호련망적안전。근거사회실체간적신임관계,파신임인입역간자치계통중,장각자치계통(autonomous system,간칭 AS)작위일개실체,각 AS 근거여린거 AS 적역사교호수거,유패협사고계이론대린거 AS 하일차표현호배급출일개도량---절점신임도,병유절점신임도정의적로경신임도작위일개신적 BGP 선로표준。최후시험표명,확전후적 BGP(new-border gateway protocol ,간칭 N-BGP)협의능구유효지억제허가로유적전파。
Since BGP protocol was not considered in the design of the security agreement at the beginning, this led to the various attacks that BGP protocol suffered from the network and Internet’s security was influenced deeply. In the article, the author according to social relations of trust between entities, each of the autonomous system (AS) was seen as an entity. The AS according to the historical performance of its neighbor, Bayesian estimation theory was used to give a measure of the neighbor AS’ performance next time-trust. The trust was added into BGP routing policy as a new attribute. Finally, tests showed that the extended BGP(N-BGP) protocol can inhibit the spread of false routes effectively.
