TITLE:
Practical Security Approaches against Border Gateway Protocol (BGP) Session Hijacking Attacks between Autonomous Systems
AUTHORS:
Stephen Brako Oti, James Ben Hayfron-Acquah
KEYWORDS:
Inter-Domain Routing, Session Hijacking, Bgp Security, Autonomous Systems
JOURNAL NAME:
Journal of Computer and Communications,
Vol.2 No.8,
June
17,
2014
ABSTRACT:
The border gateway
protocol (BGP) is the default inter domain routing protocol used on the
internet for exchanging information between autonomous systems. Available
literature suggests that BGP is vulnerable to session hijacking attacks. There
are a number of proposals aimed at improving BGP security which have not been
fully implemented. This paper examines a number of approaches for securing BGP
through a comparative study and identifies the reasons why these proposals have
not been implemented commercially. This paper analyses the architecture of
internet routing and the design of BGP while focusing on the problem of BGP
session hijacking attacks. Using Graphical Network Simulator 3 (GNS-3), a
session hijack is demonstrated and a solution which involves the implementation
of route filtering, policy-maps and route-maps on CISCO routers representing
ASes is carried out. In the end, a workable industry standard framework for
securing and protecting BGP sessions and border routers from exploitation with
little or no modification to the existing routing infrastructure is
demonstrated.