Research And Implementation Of Anomaly Detection Technology Of Internet Routing System Based On Secure Multi-Party Computation

Currently, the researches about security of inter-domain routing of the Internet have got great attentions. After analyzing current issues and researches about the security of inter-domain routing deeply, we conclude that, monitoring is an effective and practical method to ensure the healthy inter-domain routing system based on the current network devices, however, the problem of privacy leaking is existing in this method.Consider a set of parties who do not trust each other but want to compute some agreed function of their inputs in a secure way. This problem is just known as secure multi-party computation. The problems are special cases of secure multi-party computation problems. In fact, in any case, theoretics or practice, these are the fundamental problems in secure multi-party computation. It is therefore an open problem to designing beauty protocols that achieve fairness, security and efficiency.Because current monitoring systems of inter-domain pay no heed to problem of privacy, Firstly, we build an effective model of detecting system of Inter-domain based on secure multi-party computation. Secondly, we study some key technologies of the model, provide detailed design schemes of this detecting system and implement it. Finally, we analyze the detected data to optimize it. In this dissertation, the main contributions are as follows:(1) We propose a anomaly detecting system model for inter-domain routing system based on secure multi-party computation. Using the method mixtured with homomorphic public key cryptosystems and one-way function, the model, which detects anomalous routes by utilizing the idea of secure multi-party computation, can achieve the goal of no information leaking and no colluding.(2) We study the problems in united detection based on multiple routing tables without information leaking, and propose two algorithms which named secure MOAS anomaly detection algorithm and secure path falsification anomaly detection algorithm.(3) We study the problems in united detection based on multiple configuration files of routing policy without information leaking, and propose two algorithms which named secure community consistency detection algorithm and secure stability consistency detection algorithm.(4) We design and implement the module functions, communication packets and interfaces of the anomaly detecting system for inter-domain routing system based on secure multi-party computation(MISPSec), then finished a prototype.(5) We examine the correctness, security and spending of computation and communication of our system for inter-domain routing system based on secure multi-party computation(MISPSec).