关键词: 域间路由 下一代互联网 安全 攻击检测

Abstract:

The BGP-based inter-domain routing system is the infrastructure of NGI （Next Generation Interact）. There ore serious security threats in the BGP rou ting system.This paper first analyzes the vulnerability of the inter-domain routing system of NGI, presents an attack model towards inter-domain routing   which describes certain attack goals and various attack modes, and compares between BGP-4 and BGP4＋ on security capabilities in view of the protocol  hierarchy. We propose a detection scheme for routing attacks, which can effectively achieve the inter-domain routing security of NGL.

Key words: inter-domain routing, NGI （Next Generation Internet）, security, routing attack detection