Unlock instant, AI-driven research and patent intelligence for your innovation.

Method, border router and system for controlling inter-domain routing change

A technology for controlling domains and routers, applied in the field of communication, can solve the problems of lack of security design for inter-domain routing changes, operators forged routing attacks, threats to the daily operation of Internet infrastructure, etc., to achieve routing credible change control and solve routing problems. hijacking effect

Active Publication Date: 2019-02-12
CHINA TELECOM CORP LTD
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the design of BGP routing protocol lacks a perfect security design for the change of inter-domain routing. AS (Autonomous System, Autonomous System) border routers unconditionally trust the routing change information sent by BGP neighbors
This security hole causes operators to face security risks such as route hijacking and forged route attacks, which seriously threatens the daily operation of Internet infrastructure

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, border router and system for controlling inter-domain routing change
  • Method, border router and system for controlling inter-domain routing change
  • Method, border router and system for controlling inter-domain routing change

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048]The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. The following description of at least one exemplary embodiment is merely illustrative in nature and in no way taken as limiting the invention, its application or uses. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0049] The relative arrangements of components and steps, numerical expressions and numerical values ​​set forth in these embodiments do not limit the scope of the present invention unless specifically stated otherwise.

[0050] At the same time, it should be understood that, for the convenience of de...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method, border router and system for controlling inter-domain routing change. In the method for controlling inter-domain routing change, when the border router receives the routing change information released across domains, it extracts the routing information, the routing information signature associated with the routing information, and the routing change information from the routing change information. The digital certificate of the AS to which the information issuer belongs uses the public key associated with the digital certificate to decrypt the signature of the routing information. If the decryption is successful, the routing information is added to the routing table database as a routing candidate entry, thereby realizing the routing table update. By using the key associated with the digital certificate to verify the security of the routing information signature issued across domains, it effectively solves security threats such as route hijacking and forged route attacks due to protocol security vulnerabilities, and realizes the security of BGP inter-domain routing. Routing trusted change control.

Description

technical field [0001] The invention relates to the field of communication, in particular to a method, border router and system for controlling inter-domain route change. Background technique [0002] At present, inter-domain routing selection of the Internet is accomplished through BGP (Border Gateway Protocol, Border Gateway Protocol) routing information exchange. However, the design of the BGP routing protocol lacks a comprehensive security design for the change of inter-domain routes. AS (Autonomous System, Autonomous System) border routers unconditionally trust the route change information sent by BGP neighbors. This security hole causes operators to face security risks such as route hijacking and forged route attacks, which seriously threatens the daily operation of Internet infrastructure. Therefore, the trusted control of routing changes between Internet domains has become a common concern of operators all over the world. Contents of the invention [0003] Embodi...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L9/32H04L12/757
Inventor 王帅余晓光黄维龙刘东鑫肖宇峰
Owner CHINA TELECOM CORP LTD