Abstract
A number of solutions have been proposed to secure the Border Gateway Routing (BGP) protocol by validating BGP update path and origin information. These solutions make use of centralized database, centralized Public Key Infrastructure (PKI) and some conventional PGP variants as their security mechanism. These solutions are prone to successful attack by state actors and often build database to verifying BGP updates without proper means of validating data stored in this database. Therefore, there is a need for alternative approach to secure the BGP routing protocol. In this chapter, we propose a blockchain based technology used to create a distributed or decentralized immutable database that relies on consensus of participating Autonomous System (AS), to build this blockchain. Every BGP route update received by an AS peer is validated against the content of the blockchain distributed database to detect updates with falsified path and origin information. The limitation of throughput and scalability associated with the blockchain would not affect the proposed blockchain solution once it is fully operational. This is because the data stored in the distributed ledger has a frequency or rate of change that is far lower than that of the blockchain transaction rate. Furthermore, with the blockchain solution, the centralized PKI root of trust is eliminated and AS are now capable of detecting and mitigating IP prefix hijack attack in real time, without outsourcing this service to a third party.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsReferences
Rashevskiy, R.B., Shaburov, A.S.: BGP-hijacking attacks: theoretical basis and practical scenarios. In: IEEE Conference of Russian Young Researchers in Electrical and Electronic Engineering, pp. 208–212 (2017)
Hari, A., Lakshman, T.V.: The internet blockchain: a distributed, tamper-resistant transaction framework for the internet. In: ACM Workshop on Hot Topics in Networks, pp. 204–210 (2016)
de la Rocha, A., Arevalillo, G., Papadimitratos, P.: Blockchain-based public key infrastructure for inter-domain secure routing (2017)
Wang, N., Wang, B.: A secure inter-domain routing protocol. In: Second International Symposium on Intelligent Information Technology Application (2016)
Vidya, K., Rhymend Uthariaraj, V.: Application of logarithmic keying for securing ASPATH in inter-domain routing. In: 2009 First International Conference on Advanced Computing, pp. 86–92 (2009)
Butler, K., McDaniel, P., Aiello, W.: Optimizing BGP security by exploiting path security. In: ACM Conference on Computer and Communications Security, pp. 298–310 (2006)
Kent, S., Lynn, C., Seo, K.: Secure border gateway protocol (S-BGP). IEEE J. Sel. Areas Commun. 18, 582–592 (2000)
Sermpezis, P., Kotronis, V., Gigis, P., Dimitropoulos, X., Cicalese, D., King, A., Dainotti, A.: ARTEMIS: neutralizing BGP hijacking within a minute. IEEE/ACM Trans. Netw. (TON) 2471–2486 (2018)
Yli-Huumo, J., Ko, D., Choi, S., Park, S., Smolander, K.: Where is current research on blockchain technology? A systematic review (2016)
Kumari, S., Ruj, S.: SmartDNSPKI: A Blockchain Based DNS and PKI (2017)
Leo Arnason, S.: Cryptocurrency and bitcoin: a possible foundation of the future currency, why it has value, what is its history and its future outlook (2015)
Bonneau, J., Miller, A., Clark, J., Narayanan, A., Kroll, J.A., Felten, E.W.: SoK: research perspectives and challenges for bitcoin and cryptocurrencies. In: IEEE Symposium on Security and Privacy., pp. 104–121 (2015)
Nakamoto, S.: Bitcoin: A Peer-to-Peer Electronic Cash System (2008)
Giancaspro, M.: Is a smart contract really a smart idea? Insights from a legal perspective. Comput. Law Secu. Rev. 33(6), 825–835 (2017)
Gervais, A., Karame, G.O., Wust, K., Glykantzis, V., Ritzdorf, H., Capkun, S.: On the security and performance of proof of work blockchains. 3–16 (2016)
Ns-3 Network Simulator: https://www.nsnam.org/docs/tutorial/html/introduction.html
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Switzerland AG
About this chapter
Cite this chapter
Awe, K.F., Malik, Y., Zavarsky, P., Jaafar, F. (2020). Validating BGP Update Using Blockchain-Based Infrastructure. In: Khan, M., Quasim, M., Algarni, F., Alharthi, A. (eds) Decentralised Internet of Things. Studies in Big Data, vol 71. Springer, Cham. https://doi.org/10.1007/978-3-030-38677-1_7
Download citation
DOI: https://doi.org/10.1007/978-3-030-38677-1_7
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-38676-4
Online ISBN: 978-3-030-38677-1
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)