An Expectation-Based Approach to Policy-Based Security of the Border Gateway Protocol


The inter-domain routing protocol of the Internet, i.e., Border Gateway Protocol (BGP), is vulnerable to malicious attacks. Although many security solutions for BGP have been proposed, they have mainly focused on topology-based security. Policy-based security has largely been overlooked-a severe concern especially since BGP is a policy-based routing protocol. In this paper, we present an Expectation Exchange and Enforcement (E3) mechanism for defining policies between autonomous systems (ASes) such that any AS may enforce such policies.

In IEEE Conference on Computer Communications Workshops