Descartes BGP : A Conflict Detection and Response Framework for Inter - Domain Routing

—We present Descartes BGP (D-BGP), a fault detection and response framework that enhances the robustness, security, and manageability of inter-domain routing. D-BGP associates a state of " agreement, " " conflict, " or " persistent conflict " with each announced address prefix. When a D-BGP router receives a routing update in which a new AS claims to be an origin of a prefix, it alerts other D-BGP routers to collaboratively verify their ownership claim and resolve the potential conflict without reference to an oracle, such as a topology database server. If a conflict is " persistent, " a black hole may have formed, pulling traffic destined to the prefix in conflict. When this happens, D-BGP logs useful diagnostic information to aid resolution by network administrators. In spite of the black hole, the D-BGP framework allows data traffic to reach critical network services located on or needed by the hosts within the prefix. We evaluate D-BGP with the Scaleable Simulation Framework NETwork (SSFNET) simulator and show that D-BGP resolves BGP faults and misconfigurations in real time, and mitigates a persistent conflict over the ownership of an IP prefix. We show that D-BGP provides path resilience quickly and with few messages. Using BGP update data obtained during an actual black hole event, we show that D-BGP's detection mechanism scales well. «au contraire de cela, même que je pensais à douter de la vérité des autres choses, il suivait très évidemment et très certainement que j'étais.» " to the contrary, in the very act of thinking about doubting the truth of other things, it very clearly and certainly followed that I existed. "-René Descartes (1596-1650), Le Discours de la Méthode, Quatrieme Partie