关键词: 边界网关协议, 自治系统, 前缀劫持, 模拟, GTNetS

Abstract:

The interdomain routing system based on BGP is the core infrastructure of the Internet. It is also the key to ensuring interconnection and normal operation of the entire network. However, the BGP protocol itself is highly vulnerable to attacks due to the lack of necessary security mechanisms. For example, the BGP prefix hijacking is the one that is difficult to prevent. In recent years, there have been many BGP prefix hijacking incidents that caused serious harms. We have constructed a largescale software simulation environment for interdomain routing systems based on GTNetS, and have made a large number of BGP prefix hijacking tests, and we have studied the factors related to the attack scope of prefix hijacking. The tests show that the damage range caused by the BGP prefix hijacking has direct relationships with the levels and degrees of the AS from which the prefix hijacking is launched.

Key words: border gateway protocol;autonomous system;prefix hijacking;simulation;GTNetS