The Research Of Content Security Of Inter-domain Routing Protocol BGP

As the only inter-domain routing protocol that being deployed in the network, the importance of BGP(Border Gateway Protocol) is no doubt. It is the binder that bundles the small networks and it ensures that each organization can share the routing information.It is this feature allow us to find efficient route smoothly from one honst to another in varying network.,regardless of the location of the hosts.What BGP need to do is to exchange network reachability information and determine the route to the destination network in the basis of this reachability information.However,BGP protocol has a lot of security threats,which makes that the BGP security has become a focus topic in recent years.The security of BGP directly affects the availability of internet routing and it has become a major bottleneck for further development of internet. In recent years,many domestic and international experts have proposed a number of improvement schemes for the BGP packet content and the most famous scheme is SBGP.Unfortunately,SBGP exists only in the theoretical possibility,because of producing too high consumption.Firstly, this thesis introduces the principle of BGP and some existing security threats, and then summarizes some Significant BGP security solutions that being proposed in recent years.Secondly,this thesis starts with SBGP,the most important security scheme, and analyzes in detail the three modules of SBGP:PKI module,"attestation"module and IPSec module. a simulation model is constructed based on the SSFNet simulator, to compare convergence time and memory consumption between BGP and SBGP.and then analyzes the major optimization programs,such as signature amortization and aggregate signature,and analyzes their advantages and disadvantages.,as well, puts forward own optimization program:SA-GAS and SA-SAS.Finally,according to this theory,one simulation model,based on the SSFNet simulator,is constructed to test the convergence time and memory consumption of the optimization programs.The results prove that the SA-GAS can improve the two performances perfectly and the SA-SAS also offers some optimization from the view of synthesis,in spite of no substantial improvement.