计算机工程 ›› 2012, Vol. 38 ›› Issue (14): 112-115.doi: 10.3969/j.issn.1000-3428.2012.14.033

• 安全技术 • 上一篇    下一篇

基于AS联盟与信誉机制的域间安全路由协议

李兆斌 1,康志荣 2,池亚平 1,方 勇 1   

  1. (1. 北京电子科技学院通信工程系,北京 100070;2. 西安电子科技大学计算机学院,西安 710071)
  • 收稿日期:2011-11-14 出版日期:2012-07-20 发布日期:2012-07-20
  • 作者简介:李兆斌(1977-),男,博士,主研方向:网络安全,可信计算;康志荣,硕士研究生;池亚平,副教授;方 勇,教授
  • 基金项目:
    国家自然科学基金资助项目“基于字符排列地址编码的可信路由理论研究”(60951001);北京市自然科学基金资助项目“基于可信密码模块的政府内网可信体系研究”(4102057);中央高校基本科研业务费专项基金资助项目;北京电子科技学院信息安全重点实验室基金资助项目

Inter-domain Security Routing Protocol Based on Autonomous Systems Alliance and Reputation Mechanism

LI Zhao-bin 1, KANG Zhi-rong 2, CHI Ya-ping 1, FANG Yong 1   

  1. (1. Department of Communication Engineering, Beijing Electronic Science and Technology Institute, Beijing 100070, China; 2. School of Computer Science and Technology, Xidian University, Xi’an 710071, China)
  • Received:2011-11-14 Online:2012-07-20 Published:2012-07-20

摘要: 基于信誉机制的边界网关协议存在信誉值计算不合理和数据存储不安全等问题。为此,提出一种新的域间安全路由协议TBGP。从网络节点、链路和路径3个方面计算信誉值,以提高路由的安全性,并引入可信计算,利用自治系统联盟管理保证信誉值数据的完整性和存储的安全性。理论分析及仿真结果表明,该协议可较好地抑制不可信路由的传播,实现最优路径选择。

关键词: 信誉机制, 可信边界网关协议, 可信计算, 自治系统联盟, 可信平台模块, 路由机制

Abstract: Border Gateway Protocol(BGP) based on reputation mechanism has some defects such as unreasonable computing of reputation value and insecurity data storage. This paper proposes a new inter-domain routing protocol called Trusted Border Gateway Protocol(TBGP). In order to improve the security of routing, TBGP calculates reputation value from the three aspects of the network nodes, links and path. The trusted computing is also introduced to TBGP, and Autonomous Systems(AS) alliance management is used to ensure the integrity and security of reputation value. Analysis and simulation results show that TBGP can inhibit the spread of untrusted routing and help to choose the best path.

Key words: reputation mechanism, Trusted Border Gateway Protocol(TBGP), trusted computing, Autonomous Systems(AS) alliance, Trusted Platform Module(TPM), routing mechanism

中图分类号: