关键词: 多路径;域间路由选择决策;承诺;验证

Abstract:

Because of complicated security policy collisions and twisted interest conflicts between different network domains, interdomain routing security has been one challenge of secure routing. At present most of related researches focus on the authentication of routing source and true path, but seldom address another point of whether the routing decision process matches expected policy. A multipath interdomain routing decision verification protocol was designed, which can check whether an AS keeps its promise about choosing appropriate M from N paths that have the same destination and are received from upstream ASs, and sending to a downstream AS. According to the analysis, the protocol is valid and respects the privacy of participants, as well as can resist attacks such as forgery, tampering and replay etc. and deploy on internet incrementally.

Key words:  multipath; inter-domain routing decision; promise; verification