Change search
ReferencesLink to record
Permanent link

Direct link
Collaborative Network Security: Targeting Wide-area Routing and Edge-network Attacks
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, Faculty of Science & Engineering.
2016 (English)Doctoral thesis, monograph (Other academic)
Abstract [en]

To ensure that services can be delivered reliably and continuously over theInternet, it is important that both Internet routes and edge networks aresecured. However, the sophistication and distributed nature of many at-tacks that target wide-area routing and edge networks make it difficult foran individual network, user, or router to detect these attacks. Thereforecollaboration is important. Although the benefits of collaboration betweendifferent network entities have been demonstrated, many open questionsstill remain, including how to best design distributed scalable mechanismsto mitigate attacks on the network infrastructure. This thesis makes severalcontributions that aim to secure the network infrastructure against attackstargeting wide-area routing and edge networks.

First, we present a characterization of a controversial large-scale routinganomaly, in which a large Telecom operator hijacked a very large numberof Internet routes belonging to other networks. We use publicly availabledata from the time of the incident to understand what can be learned aboutlarge-scale routing anomalies and what type of data should be collected inthe future to diagnose and detect such anomalies.

Second, we present multiple distributed mechanisms that enable col-laboration and information sharing between different network entities thatare affected by such attacks. The proposed mechanisms are applied in thecontexts of collaborating Autonomous Systems (ASes), users, and servers,and are shown to help raise alerts for various attacks. Using a combina-tion of data-driven analysis and simulations, based on publicly availablereal network data (including traceroutes, BGP announcements, and net-work relationship data), we show that our solutions are scalable, incur lowcommunication and processing overhead, and provide attractive tradeoffsbetween attack detection and false alert rates.

Finally, for a set of previously proposed routing security mechanisms,we consider the impact of regional deployment restrictions, the scale of thecollaboration, and the size of the participants deploying the solutions. Al-though regional deployment can be seen as a restriction and the participationof large networks is often desirable, we find interesting cases where regionaldeployment can yield better results compared to random global deployment,and where smaller networks can play an important role in achieving bettersecurity gains. This study offers new insights towards incremental deploy-ment of different classes of routing security mechanisms.

Place, publisher, year, edition, pages
Linköping: Linköping University Electronic Press, 2016. , 175 p.
Linköping Studies in Science and Technology. Dissertations, ISSN 0345-7524 ; 1798
Keyword [en]
Collaboration, network security, BGP attacks, routing security, hijack
National Category
Computer Science
URN: urn:nbn:se:liu:diva-131959DOI: 10.3384/diss.diva-131959ISBN: 9789176856628 (print)OAI: diva2:1045752
Public defence
2016-12-02, Visionen, Building B, Campus Valla, Linköping, 13:15 (English)
CUGS (National Graduate School in Computer Science).SE (The Internet Infrastructure Foundation)
Available from: 2016-11-11 Created: 2016-10-12 Last updated: 2016-11-14Bibliographically approved

Open Access in DiVA

Collaborative Network Security: Targeting Wide-area Routing and Edge-network Attacks(5363 kB)81 downloads
File information
File name FULLTEXT01.pdfFile size 5363 kBChecksum SHA-512
Type fulltextMimetype application/pdf
omslag(816 kB)17 downloads
File information
File name COVER01.pdfFile size 816 kBChecksum SHA-512
Type coverMimetype application/pdf

Other links

Publisher's full text

Search in DiVA

By author/editor
Hiran, Rahul Gokulchand
By organisation
Database and information techniquesFaculty of Science & Engineering
Computer Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 81 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Altmetric score

Total: 2079 hits
ReferencesLink to record
Permanent link

Direct link