%0 Journal Article
%T SE-BGP: An Approach for BGP Security<br>SE-BGP:一种BGP安全机制
%A HU Xiang-Jiang
%A ZHU Pei-Dong
%A <br>胡湘江
%A 朱培栋
%J 软件学报
%D 2008
%I 
%X BGP (border gateway protocol) security is very important to the inter-domain routing security. Many solutions have been proposed, but none has been deployed until now. This paper analyzes the main problems of these approaches. It studies the AS (autonomous system) topology of the Internet, especially the rich-club property, and gives the notion of the AS alliance. It proposes SE-BGP (security enhanced BGP) as a new way for BGP security. An alliance-based security architecture, and a new trust model-TTM (translator trust model) for SE-BGP are constituted. An authentication scheme based on TTM is also designed. Furthermore, the way of how to extend the BGP protocol is considered. The SE-BGP has strong ability of security and good scalability, and the number of the used certificates is about 1% of the traditional solutions.
%K BGP (border gateway protocol) security
%K SE-BGP (security enhanced BGP)
%K AS (autonomous system) alliance
%K trust model
%K TTM (translator trust model)<br>BGP(border
%K gateway
%K protocol)安全
%K SE-BGP(security
%K enhanced
%K BGP)
%K AS(autonomous
%K system)联盟
%K 信任模型
%K TTM(translator
%K trust
%K model)
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=7735F413D429542E610B3D6AC0D5EC59&aid=E6908E19E32ECF15DA86B945E93CB7F1&yid=67289AFF6305E306&vid=2A8D03AD8076A2E3&iid=CA4FD0336C81A37A&sid=ED01F5AE50BE09C0&eid=5BC9492E1D772407&journal_id=1000-9825&journal_name=软件学报&referenced_num=0&reference_num=14