Computational complexity of traffic hijacking under BGP and S-BGP
Copyright policy )Computational complexity of traffic hijacking under BGP and S-BGP
Harmful Internet hijacking incidents put in evidence how fragile the Border Gateway Protocol (BGP) is, which is used to exchange routing information between Autonomous Systems (ASes). As proved by recent research contributions, even S-BGP, the secure variant of BGP that is being deployed, is not fully able to blunt traffic attraction attacks. Given a traffic flow between two ASes, we study how difficult it is for a malicious AS to devise a strategy for hijacking or intercepting that flow. We show that this problem marks a sharp difference between BGP and S-BGP. Namely, while it is solvable, under reasonable assumptions, in polynomial time for the type of attacks that are usually performed in BGP, it is NP-hard for S-BGP. Our study has several by-products. E.g., we solve a problem left open in the literature, stating when performing a hijacking in S-BGP is equivalent to performing an interception.
17 pages with 6 figures
Networking and Internet Architecture (cs.NI), FOS: Computer and information sciences, Interdomain routing, Routing stability, Network protocols, BGP, Hijacking attack, Interception attack, Computational complexity, Internet topics, computational complexity, Analysis of algorithms and problem complexity, F.2, BGP, G.2.2, hijacking attack, interdomain routing, routing stability, Computer Science - Networking and Internet Architecture, C.2.2, Computer Science - Computer Science and Game Theory, network protocols, C.2.2; F.2; G.2.2, interception attack, Network protocols, Computer Science and Game Theory (cs.GT)
Networking and Internet Architecture (cs.NI), FOS: Computer and information sciences, Interdomain routing, Routing stability, Network protocols, BGP, Hijacking attack, Interception attack, Computational complexity, Internet topics, computational complexity, Analysis of algorithms and problem complexity, F.2, BGP, G.2.2, hijacking attack, interdomain routing, routing stability, Computer Science - Networking and Internet Architecture, C.2.2, Computer Science - Computer Science and Game Theory, network protocols, C.2.2; F.2; G.2.2, interception attack, Network protocols, Computer Science and Game Theory (cs.GT)
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).4 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!