TY - JOUR
T1 - Let the market drive deployment
T2 - A strategy for transitioning to BGP security
AU - Gill, Phillipa
AU - Schapira, Michael
AU - Goldberg, Sharon
N1 - Publisher Copyright:
© 2011 ACM.
PY - 2011/8/15
Y1 - 2011/8/15
N2 - With a cryptographic root-of-trust for Internet routing(RPKI [17]) on the horizon, we can finally start planning the deployment of one of the secure interdomain routing protocols proposed over a decade ago (Secure BGP [22], secure origin BGP [37]). However, if experience with IPv6 is any indicator, this will be no easy task. Security concerns alone seem unlikely to provide sufficient local incentive to drive the deployment process forward. Worse yet, the security benefits provided by the S∗BGP protocols do not even kick in until a large number of ASes have deployed them. Instead, we appeal to ISPs' interest in increasing revenue-generating traffic. We propose a strategy that governments and industry groups can use to harness ISPs' local business objectives and drive global S∗BGP deployment. We evaluate our deployment strategy using theoretical analysis and large-scale simulations on empirical data. Our results give evidence that the market dynamics created by our proposal can transition the majority of the Internet to S∗BGP.
AB - With a cryptographic root-of-trust for Internet routing(RPKI [17]) on the horizon, we can finally start planning the deployment of one of the secure interdomain routing protocols proposed over a decade ago (Secure BGP [22], secure origin BGP [37]). However, if experience with IPv6 is any indicator, this will be no easy task. Security concerns alone seem unlikely to provide sufficient local incentive to drive the deployment process forward. Worse yet, the security benefits provided by the S∗BGP protocols do not even kick in until a large number of ASes have deployed them. Instead, we appeal to ISPs' interest in increasing revenue-generating traffic. We propose a strategy that governments and industry groups can use to harness ISPs' local business objectives and drive global S∗BGP deployment. We evaluate our deployment strategy using theoretical analysis and large-scale simulations on empirical data. Our results give evidence that the market dynamics created by our proposal can transition the majority of the Internet to S∗BGP.
KW - Bgp
KW - Routing
KW - Security
UR - http://www.scopus.com/inward/record.url?scp=85091028019&partnerID=8YFLogxK
U2 - 10.1145/2043164.2018439
DO - 10.1145/2043164.2018439
M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???
AN - SCOPUS:85091028019
SN - 0146-4833
VL - 41
SP - 14
EP - 25
JO - Computer Communication Review
JF - Computer Communication Review
IS - 4
ER -