Sriram and Doug

IEEE Circuits and Systems joint Chapter of the Vancouver/Victoria Sections
Simon Fraser University, School of Engineering Science
Centre for Scientific Computing Seminar (in conjunction with PIMS/MITACS)

KOTIKALAPUDI SRIRAM and DOUG MONTGOMERY
National Institute of Standards and Technology
Gaithersburg, MD
Email: {ksriram, dougm}@nist.gov

Title: INTERNET ROUTING SECURITY: BGP BEHAVIOR UNDER PEERING SESSION ATTACKS

(Presentation is available in pdf format. Accompanying paper and the BGP security guidance draft for comments.)

Wednesday, November 9, 2005, 4:30 pm
ASB 10900 - Presentation Studio
Simon Fraser University


Abstract

We will start with a brief overview of known vulnerabilities in the Border Gateway Protocol (BGP). These vulnerabilities, when exploited by malicious attackers, can severely disrupt the Internet routing functions. We will focus specifically on the impact of BGP peering session attacks. These attacks are known to drive routes into route flap damping (RFD) suppression states and thus cause prolonged isolations between autonomous systems and destinations. We present a detailed study of the impact of BGP peering session attacks and the resulting exploitation of RFD that cause network-wide routing disruptions. Analytical results provide insights into the nature of the problem and impact of the attacks. Detailed packet level simulation results complement the analytical results and provide many additional insights. If time permits, we will also discuss a modeling approach for evaluating the cost vs. benefit tradeoffs associated with implementing countermeasures.

Biography

Kotikalapudi Sriram holds B.S. and M.S. degrees from the Indian Institute of Technology in Kanpur, India, and a Ph.D. degree from Syracuse University in New York, all in electrical engineering. He is currently a senior researcher in the Advanced Networking Technologies Division at the National Institute of Standards and Technology (NIST). From 1983 to 2001, he was a Consulting & Distinguished Member of Technical Staff in the Performance Analysis Department at Bell Laboratories, Lucent Technologies. His interests and responsibilities include performance modeling, network architecture, Internet routing protocol security, design of protocols and algorithms for multi-service broadband networks, ATM traffic controls, and hybrid fiber-coax networks. Dr. Sriram holds sixteen patents and is a co-inventor on ten other pending patents. He is a contributing author and a coeditor of Cable Modems: Current Technologies and Applications, published by the IEEE Press and the International Engineering Consortium (IEC). He is a Fellow of the IEEE.


Last updated Wednesday November  9 23:03:43 PST 2005.