Securing a diabetes-free border

Securing the Border Gateway Protocol

outing in the public Internet is based on a distributed system composed of many routers, grouped into management domains called Autonomous Systems (ASes). ASes are operated by Internet Service Providers (ISPs) and by multihomed subscribers. (Throughout the remainder of this article, for brevity, we will talk in terms of ISPs, usually omitting references to multihomed subscribers.) Routing infor...

Securing the Border Gateway Routing Protocol

We analyze the security of the BGP routing protocol, and identify a number of vulnerabilities in its design and the corresponding threats. We then present a set of proposed modifications to the protocol which minimize or eliminate the most significant threats. The innovation we introduce is the protection of the second-to-last information contained in the AS PATH attributes by digital signature...

Securing the Border Gateway Protocol: A Status Update

The Border Gateway Protocol (BGP) is a critical component of the Internet routing infrastructure, used to distribute routing information between autonomous systems (ASes). It is highly vulnerable to a variety of malicious attacks and benign operator errors. Under DARPA sponsorship, BBN has developed a secure version of BGP (S-BGP) that addresses most of BGP’s architectural security problems. Th...

Free Trade at Border

Securing Large and Distributed Enterprise VoIP Infrastructure Using Border Elements

Despite an increasing enterprise adoption of IPbased real-time communication systems, large and distributed enterprises have not yet fully realized the benefits of such deployments. Our work explores the architectural challenges and security concerns of a fully IP-based real-time communication infrastructure in such large, multi-site, multivendor enterprises. In this paper, we propose a novel h...