Paper Info
Title
A Method for Real-Time Identification of Malformed BGP Messages
Abstract
The BGP routing system is one of the key component of today's Internet infrastructure responsible for carrying data traffic across different Autonomous Systems (ASes). Recently, malformed BGP messages have become a threat to the operational community as they repeatedly cause BGP session resets until identified. However, the identification of the message itself is often difficult in large ISP networks. In this paper, we propose a novel method for real-time identification of these messages by using passively collects BGP messages. Our method focuses on the frequency of observed attributes and values of prefixes advertised by each AS. Based on our heuristics that common attributes are observed at similar time scale, we periodically measure the usage frequency of attributes from BGP messages observed in real-time and mark attributes and values used by minority of the AS as suspicious. We verify the efficiency of our method using BGP data obtained from operational networks.
Year
DOI
Venue
2011
10.1109/SAINT.2011.94
SAINT
Keywords
Field
DocType
operational network,malformed bgp message,observed attribute,novel method,data traffic,real-time identification,operational community,bgp data,bgp routing system,bgp session resets,malformed bgp messages,bgp message,real time systems,border gateway protocol,autonomous system,real time,bgp,time frequency analysis,routing protocols,routing,internet
Default-free zone,Network mapping,Network Load Balancing,Computer science,Computer security,Computer network,Border Gateway Protocol,Internetworking,Autonomous system (Internet),Routing protocol,The Internet
Conference
Citations 
PageRank 
References 
0
0.34
4
Authors
4
Name
Order
Citations
PageRank
Masafumi Watari1435.09
Peng Jiang2167.17
Atsuo Tachibana3377.02
Shigehiro Ano46922.98