Inter-domain prefix hijacking detection method for error configuration

A misconfiguration and prefix technology, applied in digital transmission systems, electrical components, transmission systems, etc., can solve problems such as lack of automatic detection, and achieve the effect of avoiding misconfiguration and maintaining network security
CN101656638BInactive Publication Date: 2011-10-19INST OF COMPUTING TECH CHINESE ACAD OF SCI
4 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
INST OF COMPUTING TECH CHINESE ACAD OF SCI
Publication Date
2011-10-19
Estimated Expiration
Not applicable · inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention provides an inter-domain prefix hijacking detection method for error configuration in a network system which at least comprises one autonomous system; the autonomous system comprises a monitoring probe which comprises a network prefix information list for storing prefix information in the autonomous system; the method comprises the following steps: the monitoring probe obtains a routing update message which is transmitted outwards by the autonomous system; all items of the routing update message is analyzed, and the item for adding types carries out the next step, and the items which exist in the network prefix information list and have completely consistent prefix information are not operated additionally, and the next item in the routing update message is directly processed; for the items which do not exist in the network prefix information list or although the items exist in the network prefix information list, the prefix information is conflicted, the validity of theitems is actively detected; the network prefix information list is updated according to the verified items for adding types. The method can avoid error configuration and maintain network safety.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the field of inter-domain network security, in particular to a misconfiguration-oriented inter-domain prefix hijacking detection method. Background technique

[0002] Currently, the Internet and the networks of large Internet Service Providers (ISPs) are divided into a large number of autonomous systems (Autonomous System, AS), which define management areas and act on routing policies within the autonomous system. Today's Internet consists of more than 25,000 autonomous systems that communicate routing updates via the Border Gateway Protocol (BGP). The BGP protocol runs on the border routers of each autonomous system. It completes inter-domain routing through the AS-level routing reachability information exchanged between the border routers of each autonomous system, thereby realizing the reachability of network information between autonomous systems. . According to the BGP protocol, the border routers of each autonomous syst...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More